At 09:45 PM 8/3/00 -0400, Chris Brenton wrote:
>Loki wrote:
> >
> > Ok, this is going to cause a lot of flames, but I really don't care.. :)
> > I attended Defcon and Mr. Marcus Ranum made a complete ass out of
> himself by
> > insulting close to 75% of his customer base with his choice for
> discussion...
>
>Not to pick, but what does this have to do with firewalls, IDS or NFR's
>ability to function as advertised? This is like saying "his product
>sucks because I saw monkeys fly out of his butt". The two concepts have
>no relevance.
Each product may have its plus/minuses, and some are just freely available
as in SNORT. Learning SNORT can be very cumbersome also, so again I do not
see the distinction or relevance of the point you are raising.
The truth of the matter is, there are lots issues in the Firewall and IDS
space that have gone unresolved for quite some time. There are people
coming up with evil applications that can wreak havoc on a site or
individual without them even knowing about it. There are people who
publicize these facts hoping vendors (especially Microsoft) will pick up on
the fact that there are huge sucking chest wounds in the software they come
out with and hopefully someday will fix their software Some other
organizations try to exploit this fact by attempting to charge lots of
money to people who want to be sprinkled with "security pixie dust" and be
transformed into Ultimate Hackers.
SNORT is also not a commercially available IDS. So it is like comparing
apples and oranges not apples to apples.
> > On a more "unpersonal" note, NFR in my oppinion bites the big one..
> That may be
> > a biased opinion due to my heavy involvement and support in the SNORT IDS..
>
>Hummm...
>You flame Marcus, state his product sucks without providing any backup
>data and also mention your involvement with a different IDS product.
>IMHO this statement sounds pretty "personal". Its certainly not
>technical.
>
> > but.. hey.. I did get to play with it and noticed a lot of problems and
> issues
> > with it.. that also may be due to the fact it that it was an eval.. oh
> well..
>
>Problems and issues like...???
There are several issues with every single IDS product on the market. It
doesn't have this feature, it doesn't have that, it can't do this.. The
Ultimate Firewall is still the best IDS product available.. !!
> > (worthless rant) I'll call this one my, negative (-).02 cents
>
>You are certainly entitled to your opinion. Its just a bummer when
>people take a personal grudge and try and pass it off as technical
>content. Especially in a public forum.
I have personal grudges with lots of people, but at least I have reason to
sometimes.. :)
/m
>Cheers,
>Chris
>--
>**************************************
>[EMAIL PROTECTED]
>
>* Mastering Cisco Routers
>http://www.amazon.com/exec/obidos/ASIN/078212643X/
>* Mastering Network Security
>http://www.amazon.com/exec/obidos/ASIN/0782123430/
>-
>[To unsubscribe, send mail to [EMAIL PROTECTED] with
>"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
