Re: Intrusion Detection

From: M. Dodge Mumford (dmumfordat_private)
Date: Tue Apr 14 1998 - 15:29:18 PDT

Next message: Marcus J. Ranum: "Re: Intrusion Detection"

Previous message: Itai Dor-on: "Proxy server 2.0 research"
Maybe in reply to: shantanu bhattacharya: "Intrusion Detection"
Next in thread: Marcus J. Ranum: "Re: Intrusion Detection"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, 14 Apr 1998, Marcus J. Ranum wrote:
> 	There are really only 2 good reasons I can think of for ID systems:
> 1) To develop a threat level model as to how often you are attacked
> 2) To detect clueless people inside your organization who are attacking
> 	outside sites

You're forgetting about the twinks who are attacking your internal
network, of course. Becuase in all likelihood they're already in the soft,
squishy center.

-----
Dodge	dodgeat_private	PGP key available upon request

Next message: Marcus J. Ranum: "Re: Intrusion Detection"
Previous message: Itai Dor-on: "Proxy server 2.0 research"
Maybe in reply to: shantanu bhattacharya: "Intrusion Detection"
Next in thread: Marcus J. Ranum: "Re: Intrusion Detection"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 12:54:21 PDT