09-27-2001 05:42 AM - edited 03-08-2019 08:46 PM
Is the cisco IDS box a good way to protect a network and how easy is it to maintain.
How does someone keepup with all the new DoS attacks?
10-02-2001 01:35 PM
Because hackers tend to get in anyway (regardless of firewalls and proxys), IDS is able to stop them before they can do damage. It is not designed to be the sole security component in your network but an integral part of the picture. Also keeping the signature files up-to-date are as critical as maintaining virus data files.
12-06-2001 01:02 PM
The best IDS I've seen is Snort, and it's free too (well...aside from the two weeks to learn how to use it of course). And IDSes are a great weapon in the security toolkit.
As for keeping up with the new attack signatures...well that's a pain in the butt no matter what IDS you use. You obviously don't want to add every signature that comes in an update (looking for Oracle attacks on a network with no DBs is not worth the CPU power).
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide