Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-IDS
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Denial of Service: Commercial Defense products

from [Talisker] Network Security [Permanent Link]
Subject: RE: Denial of Service: Commercial Defense products
Date: Fri, 25 Nov 2005 21:37:43 -0000 
Hi Ogle,
Apologies for the late response I've been on the road.
Firstly the text on the page may be a little dated, much of the technology
has marched on and some products are now good at both. I would suggest and
probably get flamed for it, that the IPS have adapted to handle rate than
vice versa.  I'm playing with a particular IPS (unnamed)currently that is
very effective at dealing with DDOS

Andy Cuff
Chief Technology Officer
Computer Network Defence Ltd
http://www.securitywizardry.com

07010 709014
 


-----Original Message-----
From: Ogle [mailto:myinfosec@gmail.com]
Sent: 24 November 2005 08:46
To: Talisker
Cc: focus-ids@securityfocus.com
Subject: Re: Denial of Service: Commercial Defense products

Hi Andy,
My customer stated that they want to mitigate DDoS. Referring to your
page, "...NIPS are not always necessarily good at mitigating DOS/DDOS
attacks....". Does it mean, that I could not replace it with IPS ?

Ogle


On 11/24/05, Talisker <lists@securitywizardry.com> wrote:

Hi Ogle,
Nice list of products, I'm missing a few and would like to use your
information.  I have independent details on many other attack mitigation
systems at http://www.securitywizardry.com/idsdosmit.htm these are
predominantly rate based products, it may also be worth you looking at

the

increasing number of Intrusion Prevention Systems that possess a hybrid
combination of both rate and content based protection these are listed

at

http://www.securitywizardry.com/inline.htm the overheads in managing and
monitoring the latter products are a little higher but well worth the
investment

Good luck

Andy Cuff
Chief Technology Officer
Computer Network Defence Ltd
http://www.securitywizardry.com

07010 709014




------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it 
with real-world attacks from CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 
to learn more.
------------------------------------------------------------------------
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Remote IDS Testing, just1coder
Next by Date:  Re: Denial of Service: Commercial Defense products, Roland Dobbins
Previous by Thread:  Re: Denial of Service: Commercial Defense products, Ogle
Next by Thread:  Re: Denial of Service: Commercial Defense products, Devdas Bhagat
Indexes:  [Date] [Thread] [Top] [All Lists]