Results 1 to 4 of 4

Thread: Intrusion Detection Software

Hybrid View

  1. 03-24-2004, 01:56 PM #1
    ccrowell
    ccrowell is offline Member
    Join Date
    Mar 2004
    Location
    Buffalo, NY
    Posts
    2

    Intrusion Detection Software

    Looking for recommendations on intrusion detection software. I'm an administrator at an auto dealership and we have a lot if information ro protect. I've heard good things about Snort (doesn't hurt that it's free, either), but I have some concerns about ease of installing and using. Does anyone have any recommendations and a relatively inexpensive IDS that is somewhat easy to operate?
    Reply With Quote Reply With Quote
  2. 03-30-2004, 03:00 AM #2
    owen
    owen is offline Registered User
    Join Date
    Mar 2004
    Location
    Irvine, CA
    Posts
    5

    Snort and IDS Options

    It entirely depends on your budget and how much work you are willing to do to mitigate costs. One inexpensive solution out-of-the box is one of several IDS devices available for about $3500- $5000. DELL sells an appliance which appears to be a DELL server with Snort installed for about $5,000. If you are not particularly intimidated by this document:
    http://www.snort.org/docs/snort_acid_rh9.pdf
    then you can save yourself $2500+ by putting it together yourself. There is another way as well -- you can find a company that is good with Linux that will build you a machine configured with Snort for around $2000. Hope this helps.
    Owen Scott
    iophase.com
    Reply With Quote Reply With Quote
  3. 05-04-2004, 04:54 PM #3
    pcassell
    pcassell is offline Registered User
    Join Date
    May 2004
    Location
    Wilmington NC
    Posts
    6
    Snort is a good selection and serves its purpose very well. Many snort signatures are posted less than a day after a major worm comes out (ex sasser). However, the ease of use might be something to watch here. Its not the easiest thing to setup and use.

    There are also other issues to look at. If you are trying to protect your data, an intrusion detection system is only one component of security. Remember, an IDS is mainly for detecting intrusions. Protecting your data involves many more applications and solutions.

    A firewall is one of the most basic but one of the best defenses you can have, from both internal (LAN) and external (internet) intruders.

    Patching your systems and keeping them up to date is another basic, low cost, but critical function of security.

    Another thing to look at is the applications and actual network structure your running.

    There are many factors to security, and an intrusion detection system is not the only solution, however it is good.
    Reply With Quote Reply With Quote
  4. 05-12-2004, 02:02 AM #4
    johnsje
    johnsje is offline Registered User
    Join Date
    Jul 2003
    Location
    Minnesota
    Posts
    4
    I am a reseller for Contego 2.0 which is an intrusion detection system among many other features. Please checkout there website and see if it would meet your needs. Feel free to contact me if you are interested.

    http://www.trigeo.com/
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules