Re: IDS
At 06:55 PM 8/9/04 -0600, Nate Duehr wrote:
>Tripwire bills itself as a defensive tool, but if tripwire alerts are
>going off, it's FAR too late. Better to keep untrusted people out in
>the first place. Most people spend the majority of their security
>efforts on that first.
Yes. Tripwire etc. is a last desperate line of defense against a silently
hacked box becoming a launch pad into the rest of ur network. But if and
only if it is implemented securely itself. Meaning like how Nate and I
described.
--
REMEMBER THE WORLD TRADE CENTER ---=< WTC 911 >=--
"...ne cede males"
00000100
Reply to: