RE: Hybrid IDS

["Martins, Fernando (Lisbon)" <FMartins () pt imshealth com>]

Archive: http://msgs.securepoint.com/ids
FAQ: http://www.ticm.com/kb/faq/idsfaq.html
IDS: http://www-rnks.informatik.tu-cottbus.de/~sobirey/ids.html
HELP: Having problems... email questions to ids-owner () uow edu au
NOTE: Remove this section from reply msgs otherwise the msg will bounce.
SPAM: DO NOT send unsolicted mail to this list.
UNSUBSCRIBE: email "unsubscribe ids" to majordomo () uow edu au
-----------------------------------------------------------------------------
Hi2all

My answers are:
- For Internet banking the security solution i know better is from Utimaco,
who's develop the solution for the Swedish national bank ... anyway, my
experience with banks is more (not) see where my money goes ...
- On corporate desktops, it depends on the OS used, but i suppose snort
covers most of them, but my work is not security related, so i'm not the
best answer people will get about this.

At home what i use also depends on the box, since i got several with
diferent OS's, again snort is in all of them, and i also use others, like
ZoneAlarm, BlackICE, LIDS, and others. I never use only one app or even one
OS for any kind of 'detection' issues.

I was not defending ZoneAlarm, i was just trying to clear things about it,
witch are two diferent issues. I'm not advising the use of it, or the
non-use of it, i was just full of marketing chat with non truefuly
statements.

The technical advice about IDS i let to the experts around, since i dont
consider my self one ... i dont even got a fancy signature =;o) 

Kind Regards,
Fernando Martins

p.s. - who knows me, knows that my only elite skillz is about pizzas, on
that i can advise anybody, but i suppose its a little of topic here =)

> -----Original Message-----
> From: Talisker [SMTP:Talisker () networkintrusion co uk]
> Sent: Saturday, September 09, 2000 11:40 AM
> To:   nmcbss; Martins, Fernando (Lisbon); ids () uow edu au
> Subject:      Re: IDS: Hybrid IDS
>
> Archive: http://msgs.securepoint.com/ids
> FAQ: http://www.ticm.com/kb/faq/idsfaq.html
> IDS: http://www-rnks.informatik.tu-cottbus.de/~sobirey/ids.html
> HELP: Having problems... email questions to ids-owner () uow edu au
> NOTE: Remove this section from reply msgs otherwise the msg will bounce.
> SPAM: DO NOT send unsolicted mail to this list.
> UNSUBSCRIBE: email "unsubscribe ids" to majordomo () uow edu au
> --------------------------------------------------------------------------
> ---
> nmcbss
>
> IMHO whilst ZoneAlarm is great for the domestic market, primarily because
> it
> is free, as an enterprise solution I would prefer something that feeds
> information to a central point.
>
> My questions are:
>
>     Do you wish to roll out ZoneAlarm to your Internet banking customers?
>
>     Or is it for use on your corporate desktops?
>
> Costs - whilst ZoneAlarm is free for personal use, you have to pay to use
> it
> for business use, therefore are you better paying a little more and
> getting
> BlackIce defender?
>
> If it is strictly for corporate use in order to get the centralized
> reporting and transparent installation BlackIce Agent may be a better
> option.
>
> I use ZoneAlarm at home
> But something else at work
>
> Andy
> http://www.networkintrusion.co.uk/ Listing all known commercial IDS
>                     '''
>                  (0 0)
>   ----oOO----(_)----------
>   | The geek shall        |
>   |  Inherit the earth     |
>   -----------------oOO----
>                |__|__|
>                   || ||
>               ooO Ooo
>
>
> The opinions contained within this transmission are entirely my own, and
> do
> not necessarily reflect those of my employer.