drsuse at ...748...
Mon Nov 20 03:58:04 EST 2000
Well, for some thing such as which firewall your using on what OS I can
understand. For NIDS, I don't think it's a big deal. If you've ever had
a look at the documentation for SHADOW you can find out some of the
branches of the military that use it.
If I were a hacker, I would assume that Mitre uses it. This assumption is
made by viewing your email signature :)
Sorry for getting off topic on snort-users. There are pro's and con's to
everything and we could stretch this out longer than the dare I say
"Microsoft ist nicht installiert"
On Mon, 20 Nov 2000, Brian wrote:
> According to Dr SuSE:
> > I think it would be cool if we created a list of companies and
> > institutions that use Snort, it might help some of us in the future as far
> > as obtaining approval for Snort related projects.
> > I'll start the list with:
> > drsuse.org
> Thats not such a hot idea. Security in depth. Don't advertise what
> software you are using. Its great that everyone uses snort. GIAC gets
> more snort logs than anything else.
> Why on earth would you publicly announce what you are using to
> protect your network? There are some things that the snort engine
> does not have plug-ins for. With the knowledge of what IDS software
> people use, the attacker knows what he needs to do in order to not
> get caught.
> Brian Caswell
> The MITRE Corporation
> Snort-users mailing list
> Snort-users at lists.sourceforge.net
More information about the Snort-users