Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security FullDisclosure
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[Full-Disclosure] Re: Appliance-based security gateway?

from [Eric Scher] Network Security [Permanent Link]
Subject: [Full-Disclosure] Re: Appliance-based security gateway?
Date: Sat, 31 Jul 2004 08:48:10 -0400 
in-reply-to: <20040730233350.2858.80249.Mailman@NETSYS.COM>
Mime-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
references: <20040730233350.2858.80249.Mailman@NETSYS.COM>
Return-Path: : ericscher@mac.com

......................................................................................................................................
......................................................................................................................................
......................................................................................................................................

====================================

A few colleagues and I started a discussion as to why 
one should or shouldn't buy an appliance-based firewall, 
ids/ips or other security appliance instead of installing 
software on a server. 

We thought about patching, performance, and other 
reason for each option but I'd like to hear what other 
people think.

I would really appreciate if you could share your 
thoughts with me.

Thanks in advance,

Bernardo Santos Wernesback

===================================


Ultimately, anything you place at the edge is going to be an appliance.
Maybe it'll be something by Cisco, perhaps a decommission desktop 
running IP Tables, or even one of those fancy new boxes that's supposed
to make life easy for inexperienced admins. It's still essentially an appliance.

But what to use?  That's really the essence of the question.

I saw a car show many years ago that was doing a segment waxing,
and the host asked his guest what he recommends. 
The guest replied; "Whatever you're actually going to use"
The best wax in the world wont protect your car if it sits on the shelf.
The worst wax WILL protect your car, if it's actualy ON the car.

So for those admins that feel comfortable with something that requires a lot of
interaction, and have the time for it, then one of the more user intensive and 
complex
choices would be better. 

If not, get something that will make your life easier, because a security 
solution only
secures you when it's being used.

......................................................................................................................................
......................................................................................................................................
......................................................................................................................................
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [Full-Disclosure] Re: Appliance-based security gateway?, Eric Scher <=
Previous by Date:  [Full-Disclosure] [Paper] Designing secure desktop operating system, Timo Sirainen
Next by Date:  Re: [Full-Disclosure] Security Web Site Hosting, CrYpTiC MauleR
Previous by Thread:  [Full-Disclosure] [Paper] Designing secure desktop operating system, Timo Sirainen
Next by Thread:  Re: [Full-Disclosure] Security Web Site Hosting, CrYpTiC MauleR
Indexes:  [Date] [Thread] [Top] [All Lists]