Results 1 to 6 of 6

Thread: IDS Benefits/Risks

Thread Tools
- Show Printable Version
Display
- Switch to Linear Mode
- Switch to Hybrid Mode
- Threaded Mode

Threaded View

October 25th, 2005, 10:00 PM #6
Lv4

View Profile

View Forum Posts

Visit Homepage
Senior Member

Join Date

Mar 2003

Posts

372
I won't bother answering the first question because it has already been sufficiently answered by others.

I'll tackle part of the question than anban poses though. For an IDS to "see" encrypted traffic you are going to need something like BreachView SSL. I'm not sure how McAfee is doing it, but BreachView SSL is a great product that I highly recommend. They will also work with your IDS vendor to either have BreachView added to the IDS package or they will create a plugin for your IDS if they have access to source code.

As far as catching very small packets... if your switch can see it then your IDS should be able to see it.

Give a man a match and he will be warm for a while, light him on fire and he will be warm for the rest of his life.
Reply With Quote

Quick Navigation Miscellaneous Security Discussions Top

« Previous Thread | Next Thread »

Posting Permissions

You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
[VIDEO] code is On
HTML code is Off

Forum Rules

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

Thread: IDS Benefits/Risks

Thread Tools

Display

Threaded View

Posting Permissions