It isn't about what tool is better, but what software/hardware security packages best fit the particulars of the networked environment/architecture. IDS, Integrity checkers, why spend money, when little Radio Shack speakers can be hooked up to a Linux box, and configure syslog to blurt out "RED ALERT" everytime someone tickles the finger port.. :) stubs, remapping of ports, kernel tuning, takes the gooey stuff/attractive stuff away from any would be intruder who really wants to get at the company's jewels. Why spend money on something like TripWire HQ Connector when one can simply contract out to go around club people where it counts. Simpler than reading the manual and a lot less expensive than hiring some security infosec jocky who thinks that reading William Gibson and having license plates that read "HACKR" impresses anyone except those Media people and DefCon groupies.. :) FWUMP, sorry, boy this IDS cynic soapbox is slippery this morning.. :) - [To unsubscribe, send mail to [EMAIL PROTECTED] with "unsubscribe firewalls" in the body of the message.]
