Open source vs commercial security?

Printable View

April 7th, 2004, 12:49 AM
ammo

Open source vs commercial security?

Like many of us on AO, I've mostly only have the opportunity/funds to work with open source security software or hardware (firewalls (pf), IDS (snort), Spamassassin, Squid/Dansguardian)...

I've been wondering how these compare against commercial products; for example, is "carefull" inpection of packets of "IPSes" really much diffrent than using snort on the firewall to kill states of suspicious packets?

Anyways, I'd be interested in hearing the (preferably unbiased!) opinons of people who have used both commercial and open source secuirty...

Ammo
April 11th, 2004, 11:34 PM
spurious_inode

I could drone on and on, but let me answer you like this. In our experience a fairly heavily layered approach works best. Real Security for us is defined as commercial-off-the-shelf products like a Cisco PIX or NAV, backed up by and heavily monitored with tools we can have complete control over which just about always means Open Source.

-- spurious
April 12th, 2004, 02:23 AM
the_JinX

bets of both worlds

I'm also a fan of using both..

"best of both worlds"

for example my linux mail server scans the mails with f-secure (linux gateway edition)
April 12th, 2004, 02:34 AM
PM8228

I use all of it on my box ^_^. F-Secure, F-Prot and NAV, etc... I think they are both very good; helping protect from the others weakness even (like AwAware and S&D).

-Cheers-

All times are GMT +1. The time now is 10:03 AM.