TripWire is an application that can be integrated into a "Holistic" security/network architecture. While we are at it , a couple of waves of a magic wand, a couple of enchantment spells from the trust Big Red Book that doesn't fit on shelves, a couple of Sn0rts of "E" and blammo your organization is safe from "Wannabe" intruders, pink long-legged spiders too.. :) > > > attack, while tools like tripwire can only warn you 'after the fact'. I > > Network IDS' are as much 'after the fact' as host-based ones- you have to > get the packets to do any trending/analysis of them. If "like tripwire" > means checksumming integrity checkers, they can be as immediate as network > IDS systems are, which is still reactive rather than proactive in my book. > > > think there is a vast difference in those two parts od what some like to > > lump into one definition. > > If you do the right stuff up front, any IDS is of comapritively small > incremental value anyway for anything less than 'after the fact' analysis > or trending data. > It's still just a matter of how I personally view the different packages. I tend to view tripwire more in the realm of AV SW. Thanks, Ron DuFresne - [To unsubscribe, send mail to [EMAIL PROTECTED] with "unsubscribe firewalls" in the body of the message.]
