From: Kyle Quest (Kyle.Quest@networkengines.com)
Date: Thu Dec 22 2005 - 11:50:03 EST
>I'm going with "Well I read..." for my info on this, but the article
>by Ed Skoudis and Mike Poor in the November 2005 issue of Information
Speaking of the article... It was somewhat surprising
that Ed & Mike ended up doing very basic IPS testing.
They didn't even test flooding DoS functionality,
which is, by far, the most important thing an IPS
is suppose to stop (the reason I say that is because
you can patch your vulnerable system and you technically
don't need an IPS to catch attacks exploiting it, but there's
no such thing as a patch for SYN floods or DNS query floods).
Even detection tests were somewhat basic. I wonder why...
I guess they spent too much time setting things up. I wouldn't
rely completely on their results if you want to have a good idea who's
detection capabilities are better.
Kyle
------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:
Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers do!
Download Trial at:
http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:55:17 EDT