Re: CRIME Checkpoint versus Sonicwall

From: Crispin Cowan (crispin@private)
Date: Thu Aug 29 2002 - 12:16:12 PDT

Next message: Dorning, Kevin E - DI-3: "RE: CRIME Spammers beware"

Previous message: Crispin Cowan: "Re: CRIME Checkpoint versus Sonicwall"
In reply to: Andrew Plato: "RE: CRIME Checkpoint versus Sonicwall"
Next in thread: Jordan Gackowski: "Re: CRIME Checkpoint versus Sonicwall"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Andrew Plato wrote:

> Which is exactly why Anitian started an on-site managed security 
> service. Most firms cannot afford a full-time analyst, so one of ours 
> can come in once a week (or once a month) and review all the logs and 
> look for trouble.

That's hilarious. So an attacker could have 0wned you 3 weeks ago, and 
then the Anitian service tells you about it. Oh good :)

Why bother paying for IDS at all if you're only going to look at it 
weekly or monthly? That's absurd. The amount of potential damage that 
can occur in a week or a month is huge; of what use is such a service?

Crispin

-- 
Crispin Cowan, Ph.D.
Chief Scientist, WireX                      http://wirex.com/~crispin/
Security Hardened Linux Distribution:       http://immunix.org
Available for purchase: http://wirex.com/Products/Immunix/purchase.html

Next message: Dorning, Kevin E - DI-3: "RE: CRIME Spammers beware"
Previous message: Crispin Cowan: "Re: CRIME Checkpoint versus Sonicwall"
In reply to: Andrew Plato: "RE: CRIME Checkpoint versus Sonicwall"
Next in thread: Jordan Gackowski: "Re: CRIME Checkpoint versus Sonicwall"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Aug 29 2002 - 13:15:44 PDT