- 10 ways the Chinese Internet is different
- Hacker writes rootkit for Cisco's routers
- Verizon snares $678 million federal network deal
- Cisco loses $2 million order to Nortel
- HP buys EDS for $13.9 billion
Most companies have a solid disaster recovery plan in place to handle a "complete failure" of its Active Directory, which is really quite rare. What most recovery plans are missing, and the most common scenario, is a means to efficiently restore single directory objects. In this paper, we'll explore what most disaster recovery plans already address, highlight potential weak points, and suggest solutions that help fill those gaps-without requiring you to completely re-do your existing plan.
Get the latest on storage technologies that allow IT professionals to better cope with new IT demands. Learn how storage technologies can help you successfully tackle e-Discover, regulatory compliance, green data center initiatives and the data explosion. Get all the details now.
Watch Raven Zachary, Research Director for Open Source at the 451 Group, an independent IT analyst firm, discuss the emergence of enterprise Linux and the role of Oracle Unbreakable Linux support.
Talk about jumping on a bandwagon. When Gartner last summer declared "IDS is dead, long live IPS," marketeers everywhere picked up the intrusion-prevention system buzzword and ran with it. Like the VPN craze of three years ago, when every product having anything to do with virtualization or privacy got the VPN label, IPS products of every shape, size and description have started to crowd the market.
With our first "In the Wild" IPS test, we've spent the last five months testing 11 products on our live distributed network connecting sites in Los Angeles, San Jose and Tuscon, Ariz., to help sort out the real from the rhetoric. We looked at what the products can detect, how powerful and flexible they are in blocking traffic, and how their management systems can support real network topologies (see How we did it).
This review provides a wealth of data on the features and manageability of these products. However, because these products manage malicious traffic differently, we did not assess performance (see Why no performance tests).
We defined an IPS as an in-line product that focuses on identifying and blocking malicious network activity in real time. We set the in-line criteria because this is the segment of the market that offers the widest array of IPS technology. In doing so, we understand we excluded some good intrusion-prevention technology (see story).
Vendors participating comprised several well-known security firms, including Check Point, Internet Security Systems, NetScreen Technologies and Top Layer Networks; and newcomers Captus Networks, DeepNines Technologies, EcoNet.com, Lucid Security, StillSecure, TippingPoint Technologies and Vsecure Technologies.
These products fall into two general categories: rate-based products and content-based (also referred to as signature- and anomaly-based) products. Products from both sets generally look like firewalls and often have some basic firewall functionality. But firewalls block all traffic except that which they have a reason to pass; IPSs pass all traffic except that which they have a reason to block.