Slashdot Mirror

← Back to Stories (view on slashdot.org)

Network Intrusion Detection Systems Fail to Impress

Posted by michael on from the got-root dept.

TheBongPipe writes "I'm reading a nice test here about 7 commercial IDSs. Who won the prize? Nobody..." They also looked at Snort, but found that all the products generated way too many false alarms.

2 of 211 comments (clear)

  1. Snort GUI... by Midnight+Ryder · · Score: 4, Interesting

    Funny part is, you can take your pick of UI's for snort, on just about any platform (I run snort on WinNT on one network, and snort on Linux on another. And I've got a GUI for both of 'em ;-)

    --

    Davis Ray Sickmon, Jr - looking for something to read? Check out my three free novels at MidnightRyder.org

  2. What a wonderful idea! by Subcarrier · · Score: 5, Interesting

    I recall a user we had on our network who thought it'd be cute to install BlackIce on his box, to better secure it. Nevermind the fact that I, and the rest of the admins at my company, had firewalls in place and had never had an intrusion on our network.

    I hate to tell you this but, at this day and age when everything is being outsourced, some users feel they need to protect their machines against the "IT support". ;-)

    --
    "I have opinions of my own, strong opinions, but I don't always agree with them." -- George H. W. Bush