Network Security: Detailed info on Re: ISS

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Focus-IDS

[Top] [All Lists]

Re: ISS - virtual patching

from [Stefano Zanero] Network Security

[Permanent Link]

Subject:	Re: ISS - virtual patching
Date:	Wed, 26 Jul 2006 14:44:57 +0200

David Maynor wrote:

1. You find out about the vuln the same time ISS does. Due to excellent
threat intelligent and a top notch Research and Development team they are
likely to know about the threat long before you do.


So you are either implying that ISS does not practice full or
responsible disclosure, or stating something strange. Could you
elaborate - and maybe provide examples of this actually having happened ?

Protocols are updated all the time, traffic changes constantly


So I read this as a "protocol anomaly detection doesn't work"
declaration, right ?

Stefano

------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it 
with real-world attacks from CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 
to learn more.
------------------------------------------------------------------------

[More messages with this same subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
ISS - virtual patching, phb Re: ISS - virtual patching, David Maynor Re: ISS - virtual patching, Stefano Zanero <= Re: ISS - virtual patching, john Re: Re: ISS - virtual patching, David Maynor Re: ISS - virtual patching, thunking RE: ISS - virtual patching, Palmer, Paul (ISSAtlanta) RE: ISS - virtual patching, Palmer, Paul (ISSAtlanta) RE: ISS - virtual patching, Palmer, Paul (ISSAtlanta)

Previous by Date:	anomaly vs signature, miaomitiff119
Next by Date:	Re: anomaly vs signature, SanjayR
Previous by Thread:	Re: ISS - virtual patching, David Maynor
Next by Thread:	Re: ISS - virtual patching, john
Indexes:	[Date] [Thread] [Top] [All Lists]