Search /
Docfinder:
Advanced search  |  Help  |  Site map
RESEARCH CENTERS
SITE RESOURCES
Click for Layer 8! No, really, click NOW!
Networking for Small Business
TODAY'S NEWS
iPad 3 rumor rollup for the week of Feb. 7
Why one insurance company ditched its own hardware- for a cloud -based SAN
U.S. to use climate to help cool exascale systems
Symantec verifies stolen source code posted by Anonymous is "legitimate"
Centrex: It's alive (for now)!
Global broadband snapshot: Hong Kong throttles the rest of the world
The future of hypervisors
Google Chrome headed for Ice Cream Sandwich Android devices
HP moves load testing software to the cloud
Macs take on the enterprise
FTC warns background screening mobile apps may be unlawful
Droid 4 smartphone hitting shelves Feb. 10 for $200
Apple warns iOS developers: Don't monkey with App Store rankings
New Juniper routers converge the access net


/
Send to a friend Feedback

Technology Insider: Network-based intrusion-detection systems

Related linksToday's breaking news
Send to a friendFeedback

By David Newman, Joel Snyder and Rodney Thayer
Network World, 06/24/02

Network-based IDSs are designed to sit on your network, monitor traffic and send alarms whenever suspicious behavior occurs. Sounds like a fairly simple marching order, but our monthlong test of eight of these products show that setting up IDSs requires a substantial time investment to ensure they'll flag only suspicious traffic and leave everything else alone.

Crying wolf: False alarms hide attacks
Eight IDSs fail to impress during the monthlong test on a production network.

IDS glossary
If IDS terminology is alphabet soup to you, our glossary of IDS-specific tags will help in the translation.

Deployment tips
If you're considering installing an IDS product on our network, read our IDS deployment tips to help reduce the number of false positives - attacks that don't really exist - reported by your IDS.

See also:

Security breaking news
Keep up to date on the latest threats to your net.

Network World's Security and Bug Patch Alert newsletter
Get the latest information on security and bug alert announcements and fixes from major vendors.

Network World on Security newsletter
Stay current on security challenges and solutions, and get strategic insight into the future of information security.

Security research page
Get up to speed on security issues, including intrusion detection, hackers and other subjects.

Related Links

Error 404--Not Found

Error 404--Not Found

From RFC 2068 Hypertext Transfer Protocol -- HTTP/1.1:

10.4.5 404 Not Found

The server has not found anything matching the Request-URI. No indication is given of whether the condition is temporary or permanent.

If the server does not wish to make this information available to the client, the status code 403 (Forbidden) can be used instead. The 410 (Gone) status code SHOULD be used if the server knows, through some internally configurable mechanism, that an old resource is permanently unavailable and has no forwarding address.

Apply for your free subscription to Network World. Click here. Or get Network World delivered in PDF each week.

Get Copyright Clearance
Request a reprint or permission to use this article.


NWFusion offers more than 40 FREE technology-specific email newsletters in key network technology areas such as NSM, VPNs, Convergence, Security and more.
Click here to sign up!
New Event - WANs: Optimizing Your Network Now.
Hear from the experts about the innovations that are already starting to shake up the WAN world. Free Network World Technology Tour and Expo in Dallas, San Francisco, Washington DC, and New York.
Attend FREE
Your FREE Network World subscription will also include breaking news and information on wireless, storage, infrastructure, carriers and SPs, enterprise applications, videoconferencing, plus product reviews, technology insiders, management surveys and technology updates - GET IT NOW.