Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-IDS
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: IDS vs. IPS deployment feedback

from [Randal T. Rioux] Network Security [Permanent Link]
Subject: Re: IDS vs. IPS deployment feedback
Date: Sat, 15 Apr 2006 02:37:17 -0400 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160

Gary Halleen (ghalleen) wrote:

With the exception of a select few, all Cisco IPS signatures are open,
and can be cloned, edited, added-to, or edited.  Signatures are stored
in an xml format inside the .pkg file which is applied to a Cisco IPS
sensor.  

Gary



I couldn't find the 'open' Cisco IPS signatures anywhere on the site.
Does the Cisco definition of the word 'open' mean the same as HP's (ie
OpenVMS... not really open)?

I'd like to download and take a peek at them.

Thanks,

Randal T. Rioux | Procyon Labs
IT Security R&D and Consulting
Virtual: www.procyonlabs.com
Physical: DC / Baltimore
PGP: gpg --keyserver pgp.mit.edu --recv-keys 0xD08D1941


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFEQJSdRrGMQdCNGUERA+m8AKCmH6X+0ufmaZ5zetybgYJIQ+AffwCdEMsu
YdKozXHP+GsUDLoz3OGzBPg=
=lZAC
-----END PGP SIGNATURE-----

------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it 
with real-world attacks from CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 
to learn more.
------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: IPS false positives, Basgen, Brian
Next by Date:  Re: IPS false negatives, Thomas Ptacek
Previous by Thread:  RE: IDS vs. IPS deployment feedback, Gary Halleen (ghalleen)
Next by Thread:  Re: IDS vs. IPS deployment feedback, Frank Knobbe
Indexes:  [Date] [Thread] [Top] [All Lists]