Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-IDS
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: How to choose an IDS/FW MSS provider

from [Melih Kırkgöz (Koç.net)] Network Security [Permanent Link]
Subject: RE: How to choose an IDS/FW MSS provider
Date: Fri, 11 Mar 2005 10:59:48 +0200 
Hi There,

We are not using MSS service from ISS,what i meant with  "good support" was;
Response time,care and keen interest on customer problems,and most importantly 
perfect technical knowledge(X-Force)
For my opinion,security is not networking.It's not about speed,throughput,etc..
İt's a matter of trust,technical knowhow and vision.
That's why i trust checkpoint as a fw,(no matter on what platform it runs) or 
ISS as Intrusion Detection/Prevention

Kind regards,
Melih

-----Original Message-----
From: Stephane [mailto:stephane.d@ecologie.net] 
Sent: Thursday, March 10, 2005 10:38 AM
To: Brady, Rick
Cc: Melih Kırkgöz (Koç.net); focus-ids@securityfocus.com
Subject: Re: How to choose an IDS/FW MSS provider

Brady, Rick wrote:


Melih,
I guess you must be special to ISS, from my experience the support has been 
sub-par. Also do you like the idea that ISS IDS signatures are not known to 
the customer and only ISS ? 

Rick Brady
Liberty Mutual Group
I/S TSSS Engineering Network Access Control 
mailto:rick.brady@libertymutual.com
(603) 245-4214   8-435-4214sdn 
 



Hi there,

What are you talking about? The support? do you mean people behind 
support@iss.net or mss.support@iss.net ?

What looks good with ISS, MSS Dept is that you have somehow the X-Force support 
http://xfoce.iss.net ; as far as I know and tell me if I am wrong, ISS is the 
only security provider having an R&D dept which is the X-Force team. My 
impression about Cisco IDS for example is that they just do follow the CERT to 
react (to react, this word is important, not to prevent). ISS supported by 
X-Force provides signatures sometimes a long time before the thread is even 
known. Do you want those guys to post those signatures to the mass in order to 
have Symatntec, Cisco or other Netscreen getting R&D free profits out of it? 
Not sure you'd do so.

Also, my question was about how to choose an IDS *AND* FW firewall. I know I am 
a bit out of the topic of this mailing-list but you can be good at IDS and 
maybe bad at firewalls which are much more complex through.

PS: and once again, ISS is in the gane for 10 long years. What about the 
competitors?

Thanks,

Stephane

--------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it with real-world attacks from CORE 
IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
to learn more.
-------------------------------------------------------------------------- 
_____________________________________________________________________________________________________________________________________________
 
Bu e-posta mesaji kisiye ozel olup, gizli bilgiler iceriyor olabilir. Eger bu 
e-posta mesaji size yanlislikla ulasmissa,  icerigini hic bir sekilde 
kullanmayiniz ve ekli dosyalari acmayiniz. Bu durumda lutfen e-posta mesajini 
kullaniciya hemen geri gonderiniz  ve  tum kopyalarini mesaj kutunuzdan 
siliniz. Bu e-posta mesaji, hic bir sekilde, herhangi bir amac icin 
cogaltilamaz, yayinlanamaz ve para karsiligi satilamaz.  Bu e-posta mesaji 
viruslere karsi anti-virus sistemleri tarafindan taranmistir. Ancak yollayici, 
bu e-posta mesajinin - virus koruma sistemleri ile kontrol ediliyor olsa bile - 
virus icermedigini garanti etmez ve meydana gelebilecek zararlardan dogacak 
hicbir sorumlulugu kabul etmez.  
This message is intended solely for the use of the individual or entity to whom 
it is addressed , and may contain confidential  information. If you are not the 
intended recipient of this message or you receive this mail in error, you 
should refrain from making any use of the contents and from opening any 
attachment. In that case, please notify the sender immediately and return the 
message to the sender, then, delete and destroy all copies. This e-mail 
message, can not be copied, published or sold for any reason. This e-mail 
message has been swept by anti-virus systems for the presence of computer 
viruses. In doing so, however,  sender  cannot warrant that virus or other 
forms of data corruption may not be present and do not take any responsibility 
in any occurrence. 
_____________________________________________________________________________________________________________________________________________
 
 
 
 

--------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it with real-world attacks from 
CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 
to learn more.
--------------------------------------------------------------------------
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: How to choose an IDS/FW MSS provider, Kevin
Next by Date:  LIDS 2.2.1rc1 for 2.6.11 and 1.2.2 for 2.4.29 is released!, Huagang Xie
Previous by Thread:  RE: How to choose an IDS/FW MSS provider, Randy Golly
Next by Thread:  Re: How to choose an IDS/FW MSS provider, Mark Teicher
Indexes:  [Date] [Thread] [Top] [All Lists]