Re: IDS: Real-time IDS for Windows NT?

Nhan San (nasaki@dircon.co.uk)
Mon, 15 Sep 1997 14:06:21 +0100

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Anley, Chris: "IDS: Introduction"
Previous message: Hagit: "IDS: Re: Real-time IDS for Windows NT?"
Maybe in reply to: adamsb@un.org: "IDS: Real-time IDS for Windows NT?"
Next in thread: Nhan San: "Re: IDS: Real-time IDS for Windows NT?"

Yep.

Try Axent's ITA- Intruder alert.
This features realtime detection based on rules defined (also predefined
rules available) by the administrator.  As far as I know this is the
only product available that allows a user to create both passive and
active policies.

It is also multiplatform, and all agents can be controlled from a
central box..on unix or NT.

regards
Nhan

Confused when awake.

adamsb@un.org wrote:

> I have worked on half a dozen different networks over the past six
> years and the two most effective intrusions I saw were through
> out-of-the-box Windows NT installations with dial-up modems.
>
> Recently I ran my own command files to check the security on 12
> newly installed NT boxes and every one of them had most of it security
>
> turned off.  This looks like it is going to be a continuing problem.
>
> Does anyone have any experience with a Windows NT based real-time
> intrusion detection system that is commercially available?
>
>                                   Hog Farmer,
>                                   formerly with
>                                   Tropical Hog Improvement Programme

Next message: Anley, Chris: "IDS: Introduction"
Previous message: Hagit: "IDS: Re: Real-time IDS for Windows NT?"
Maybe in reply to: adamsb@un.org: "IDS: Real-time IDS for Windows NT?"
Next in thread: Nhan San: "Re: IDS: Real-time IDS for Windows NT?"