Network Security: Detailed info on Re: IDS\IPS that can handle one Gig

Subject:	Re: IDS\IPS that can handle one Gig
Date:	Tue, 07 Jun 2005 13:15:50 +0000

Subject:

Re: IDS\IPS that can handle one Gig

Date:

Tue, 07 Jun 2005 13:15:50 +0000

The term vulnerability management is equally flawed. We should not at
all "manage" vulnerabilities, but "identify" and "eradicate" them

In this context "manage" is used to encapsulate identification, removal, or 
circumventing based on what option there is at the time of discovery.

Terry Vernon

Frank Knobbe wrote:

On Sun, 2005-06-05 at 03:39 -0400, Vikram Phatak wrote:

The biggest knock I've heard about VM is that it doesn't actually "protect" anything since it is not patching vulnerablities.

I think this single line shows the biggest problem in the security industry, the need to protect vulnerabilities. Instead of adding layers to protect the bag of vulnerabilities, we should open the bag and remove the vulnerabilities one by one.
The term vulnerability management is equally flawed. We should not at
all "manage" vulnerabilities, but "identify" and "eradicate" them.
The whole notion of keeping vulnerabilities around is just flawed...
... and I wonder if IPSes just foster the complacency to accept and live
with vulnerabilities...
Cheers,
Frank

--------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly? Find out quickly and easily by testing it with real-world attacks from CORE IMPACT. Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 to learn more. --------------------------------------------------------------------------

<Prev in Thread]	Current Thread	[Next in Thread>
Re: IDS\IPS that can handle one Gig, (continued) Re: IDS\IPS that can handle one Gig, Peter Schawacker RE: IDS\IPS that can handle one Gig, THolman RE: IDS\IPS that can handle one Gig, Prashant Khandelwal RE: IDS\IPS that can handle one Gig, Dave Hawkins RE: IDS\IPS that can handle one Gig, Andrew Plato RE: IDS\IPS that can handle one Gig, Peter Schawacker Re: IDS\IPS that can handle one Gig, Vikram Phatak Re: IDS\IPS that can handle one Gig, Frank Knobbe Re: IDS\IPS that can handle one Gig, Control Zed Re: IDS\IPS that can handle one Gig, Frank Knobbe Re: IDS\IPS that can handle one Gig, Terry Vernon <= Re: IDS\IPS that can handle one Gig, Devdas Bhagat RE: IDS\IPS that can handle one Gig, Palmer, Paul (ISSAtlanta) Re: IDS\IPS that can handle one Gig, Ed Gibbs Re: IDS\IPS that can handle one Gig, Bob Walder Re: IDS\IPS that can handle one Gig, Bob Walder RE: IDS\IPS that can handle one Gig, Palmer, Paul (ISSAtlanta) RE: IDS\IPS that can handle one Gig, THolman Re: IDS\IPS that can handle one Gig, Ed Gibbs RE: IDS\IPS that can handle one Gig, Chris Harrington Re: IDS\IPS that can handle one Gig, Nick Black

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:	Re: IDS\IPS that can handle one Gig, Frank Knobbe
Next by Date:	on NIDS/NIPS tuning, Anton A. Chuvakin
Previous by Thread:	Re: IDS\IPS that can handle one Gig, Frank Knobbe
Next by Thread:	Re: IDS\IPS that can handle one Gig, Devdas Bhagat
Indexes:	[Date] [Thread] [Top] [All Lists]

Previous by Date:

Re: IDS\IPS that can handle one Gig, Frank Knobbe

Next by Date:

on NIDS/NIPS tuning, Anton A. Chuvakin

Previous by Thread:

Re: IDS\IPS that can handle one Gig, Frank Knobbe

Next by Thread:

Re: IDS\IPS that can handle one Gig, Devdas Bhagat

Indexes:

[Date] [Thread] [Top] [All Lists]