[939] in Intrusion Detection Systems
IDS: ccMail SMTPLINK Undeliverable Message
daemon@ATHENA.MIT.EDU (ccMail SMTPLINK)
Mon Sep 15 16:25:43 1997
Date: Mon, 15 Sep 97 13:01:08 EST
From: nm@mail.amsinc.com (ccMail SMTPLINK)
To: ids@wyrm.its.uow.edu.au
Reply-To: ids@uow.edu.au
User dirk_illenberger is not defined
Original text follows
----------------------------------------------
Received: from ams.amsinc.com by mail.amsinc.com (SMTPLINK V2.11.01)
; Mon, 15 Sep 97 13:00:58 EST
Return-Path: <owner-ids@wyrm.its.uow.edu.au>
Received: from wumpus.its.uow.edu.au by ams.amsinc.com (4.1/SMI-4.1)
id AA01074; Mon, 15 Sep 97 06:25:49 EDT
Received: (from majordom@localhost)
by wumpus.its.uow.edu.au (8.8.7/8.8.7) id WAA25320
for ids-outgoing; Sun, 14 Sep 1997 22:35:35 +1000 (EST)
X-Authentication-Warning: wumpus.its.uow.edu.au: majordom set sender to owner-ids@wyrm.its.uow.edu.au using -f
From: adamsb@un.org
Date: Sun, 14 Sep 97 08:31:04 EST
Message-Id: <9708148742.AA874251290@mail-out.un.org>
To: ids@uow.edu.au
Subject: IDS: Real-time IDS for Windows NT?
Sender: owner-ids@wyrm.its.uow.edu.au
Precedence: bulk
Reply-To: ids@wyrm.its.uow.edu.au
I have worked on half a dozen different networks over the past six
years and the two most effective intrusions I saw were through
out-of-the-box Windows NT installations with dial-up modems.
Recently I ran my own command files to check the security on 12
newly installed NT boxes and every one of them had most of it security
turned off. This looks like it is going to be a continuing problem.
Does anyone have any experience with a Windows NT based real-time
intrusion detection system that is commercially available?
Hog Farmer,
formerly with
Tropical Hog Improvement Programme
