[4380] in linux-net channel archive
BoS: Re: RealSecure
daemon@ATHENA.MIT.EDU (Olaf Titz)
Sat Sep 14 14:11:59 1996
Date: 14 Sep 1996 10:16:13 -0000
From: olaf@bigred.inka.de (Olaf Titz)
In-Reply-To: <323A24DB.5BBA-m2n@bigred.inka.de>
To: best-of-security@suburbia.net
Cc: submit-linux-dev-net@yggdrasil.com
[CCd to linux.dev.net where further discussion should be redirected.]
> > >RealSecure (tm) is a comprehensive attack recognition and real
> > >time response tool that ISS is alpha testing and will expire in
> > >60 days.
> Unfortunately for all of us, These children who get their kicks by SYN
> flooding won't expire in 60 days.
Fortunately, the free software community should be able to develop a
similar thing within this timeline. ;-)
(I don't doubt that ISS' product will have a lot of features more so
that it still remains worth consideration, but free alternative
solutions to specific problems are always a nice thing...)
olaf
--
___ Olaf.Titz@inka.de or @{stud,informatik}.uni-karlsruhe.de ____
__ o <URL:http://www.inka.de/~bigred/> <IRC:praetorius>
__/<_ >> Just as long as the wheels keep on turning round
_)>(_)______________ I will live for the groove 'til the sun goes down << ____
>From dsaxer Sat, 14 Sep 96 19:21:20 CET remote from scout.net
Received: from pdx1.world.net by scout.net (AmigaSMTPd 0.69 Dec 9, 1994)
with SMTP; Sat, 14 Sep 96 19:21:16 CET
Received: from suburbia.net (suburbia.net [203.4.184.1]) by pdx1.world.net (8.7.5/8.7.3) with ESMTP id KAA20649; Sat, 14 Sep 1996 10:19:04 -0700 (PDT)
Received: (list@localhost) by suburbia.net (8.7.4/Proff-950810) id DAA13755; Sun, 15 Sep 1996 03:02:05 +1000
Resent-Date: Sun, 15 Sep 1996 03:02:05 +1000
From: Christopher Klaus <cklaus@iss.net>
Message-Id: <199609141656.MAA24945@phoenix.iss.net>
Date: Sat, 14 Sep 1996 12:56:49 -0400 (EDT)
In-Reply-To: <19960914101613.26547.qmail@bigred.inka.de> from "Olaf Titz" at Sep 14, 96 10:16:13 am
X-Mailer: ELM [version 2.4 PL24 PGP2]
Content-Type: text
Resent-Message-ID: <"TSXv93.0.nM3.3KkEo"@suburbia>
Resent-From: best-of-security@suburbia.net
X-Mailing-List: <best-of-security@suburbia.net> archive/latest/371
X-Loop: best-of-security@suburbia.net
Precedence: list
Resent-Sender: best-of-security-request@suburbia.net
Subject: BoS: Re: RealSecure
To: olaf@bigred.inka.de
Cc: best-of-security@suburbia.net, submit-linux-dev-net@yggdrasil.com
>
> [CCd to linux.dev.net where further discussion should be redirected.]
>
> > > >RealSecure (tm) is a comprehensive attack recognition and real
> > > >time response tool that ISS is alpha testing and will expire in
> > > >60 days.
> > Unfortunately for all of us, These children who get their kicks by SYN
> > flooding won't expire in 60 days.
>
> Fortunately, the free software community should be able to develop a
> similar thing within this timeline. ;-)
Im aware of atleast 2 people who are going to release a free fix. I believe
their solutions are different for the problem, so it may be worthwhile to
test and see which one fits your needs better.
> (I don't doubt that ISS' product will have a lot of features more so
> that it still remains worth consideration, but free alternative
> solutions to specific problems are always a nice thing...)
Definitely, I agree. I hope the vendors like Sun, HP, MicroSoft, IBM, etc
will come out with solutions for their OSes. SYN flooding has been a known
problem for awhile and the chance to develope a fix has had plenty
of time. We are going to keep our own solution available to everyone
longer than 60 days, but we want to expire the alpha version so as to
make sure people at some point will upgrade to a more stable and enhanced
version. Or if they do not upgrade, they know they will need to get the
fixes from the vendors.
Thanks,
Chris
--
Christopher William Klaus Voice: (770)395-0150. Fax: (770)395-1972
Internet Security Systems, Inc. "Internet Scanner finds
Ste. 660,41 Perimeter Center East,Atlanta,GA 30346 your network security holes
Web: http://www.iss.net/ Email: cklaus@iss.net before the hackers do."
