Intrusion Detection Systems mailing list archives

Shomit Tap Documentation

From: blue0ne () igloo org (Jackie Chan)
Date: Tue, 21 Mar 2000 07:10:11 -0500 (EST)



Folks,
 I have made the shomiti Document I promised available in Word
Format.  Sorry I can seem to find my copy of pdf writer.  This document
was geared toward the consulant who may be deploying an NIDS.  I want to
make the point that I have included information about RelaSecure only
because that is the IDS I am most familiar with.  It in no way means that
you must use RS, nor does it mean that I recommend it over anything 
else.  This configuration will work with any of the viable NIDS
in the market space.  I have included a section that covers basic NIDS
considerations that should be rather generic.

The docuemtn refers to a script that can be used to set up the switch in
question.  I will be glad to send this script to anyone who emails me.

One last item, I have as of today resigned from the company that I worte
this document for, so dont call looking for me :)  Even though it is on
the website, I no longer work for META Secur e-Com.  I have decided to get
back into the product space, <opinion> and leave the evil realm of
consulting </opinion>.

Without further ado...

http://www.secur-e.com/library.html

or you can download it directly at
http://www.secur-e.com/files/Shomiti.doc

Use it well.

Cheers,

blue0ne

Current thread:

Source port of Samba Scans? Daniel Swan (Mar 10)
- <Possible follow-ups>
- Re: Source port of Samba Scans? Robert Graham (Mar 10)
- Re: Source port of Samba Scans? Daniel Swan (Mar 10)
  - Re: Source port of Samba Scans? Stuart Staniford-Chen (Mar 11)
  - comparison of NFR vs RealSecure Thomas Nau (Mar 12)
    - Re: comparison of NFR vs RealSecure Talisker (Mar 19)
    - Good source of intrusion detection and response steps? Matt Baney (Mar 24)
    - Re: Good source of intrusion detection and response steps? Stuart Staniford-Chen (Mar 24)
    - Re: Good source of intrusion detection and response steps? Matt Baney (Mar 27)
    - question tongchangda (Mar 19)
    - Shomit Tap Documentation Jackie Chan (Mar 21)
    - Last call for paper - Raid 2000 - Deadline is March 31st Herve Debar (Mar 21)
    - Last call for paper - Raid 2000 - Deadline is March 31st Herve Debar (Mar 21)
    - Shomit Tap Documentation (fwd) Jackie Chan (Mar 21)
    - Mime-Version: 1.0 Lars Olby (Mar 21)
    - general questions Lars Olby (Mar 21)
    - Freeware ICMP Network Monitor Needed Talisker (Mar 21)
    - Re: Freeware ICMP Network Monitor Needed Jonas Eriksson (Mar 22)
    - Re: Freeware ICMP Network Monitor Needed Jesse Nelson (Mar 25)
    - looking for old messages Mark K. Mellis (Mar 21)
    - Shomiti PDF format Jackie Chan (Mar 22)

(Thread continues...)