Thanks everyone. I've received many good replies.
Brad from the Wheelgroup helped out a lot. From the salespeople,
it was not clear that NetRanger was faster than CyberCop nor that
CyberCop was missing some critical functionality like shunning
and remote management. Too bad most salespeople are not engineers,
they might make more sense.
Bill Stout suggested taking a "comparison of IDS sensor software
system techniques, configurability and performance (ISS, NFR,
Wheelgroup). " Has anyone compared these technologies? What are
the biggest differences between them all?
It looks like there is alot of technology, but
all you see is alot of fluff without any details on how
they work, what exactly are the attacks they look for, what features
do some have that others dont.
It would make my life easier if someone
had a comparision sheet, as a starting point.
I also received like 3 spams from Abirnet.com to take a look at them.
Is there a feature in session wall that looks for keywords on a mailing
list and then spams them???
And who is this Gary Crumrine??? He has flamed me three times now in response
to my one message asking for help. He tells me how great the Wheelgroup is, and at
the same time, tells me I am full of crap for asking questions. Is this typical
for a mailing list?
--- Begin Message ---
Have you noticed that there seems to be a great deal of marketing hype
going on that is veiled in these feeble attempts at comparison questions?
CyberCop is but one of the latest in recent times. Watchguard and
Milkyway too. Heck, even one very famous Firewall designer was accused a
while back... I am really getting tired of seeing this stuff. If these
people want to hawk their wares...do it in a trade magazine. The way I
see it, if a company has to resort to free advertising, and do it in this
way, it smacks of shady dealings, and I tend to want to stay away from
those people. If you have a product that you think is the greatest thing
since soft butter, then tell the world about it, in an appropriate manner,
but do not think for one minute that we can't see through this hype...it is
getting boring.
Just my 2cents worth. These are my opinions
-----Original Message-----
From: Stout, William [SMTP:StoutW @
pios .
com]
Sent: Tuesday, December 16, 1997 2:50 PM
To: 'zack .
whickerman @
usa .
net'
Cc: 'Firewalls-GC'
Subject: RE: NetRanger vs. CyberCop
> ----- Original Message -----
> From: zack .
whickerman @
usa .
net [SMTP:zack .
whickerman @
usa .
net]
> Sent: Monday, December 15, 1997, 0:05:48
> To: Stout, William
> Subject: NetRanger vs. CyberCop
>
>
> Greetings Firewallers! I've seen much discussion lately
> on here regarding intrusion and thought I would ask for
> comments on some issues I am looking into.
>
> I am in the process of evaluating NetRanger and CyberCop
> and would like to hear if anyone else has done a comparison. When
Really? Just a month ago I had my hands on a pre-beta CyberCop sensor
(Solaris X86/266MHz Pentium II/ fast-ethernet box). You can't get a
CyberCop system just yet.
Both the CyberCop and NetRanger products use Wheelgroup IDS software, so
there should not be any core difference as far as the sensor software.
CyberCop sensors do not yet have an adapter for every media though.
Network General...Umm...Network Associates is good at protocols and
interfaces though, so they'll eventually have 'everything'.
NetRanger can give feedback to a NetSentry 'security' router for dynamic
rules.
Wheelgroups' background in Airforce InfoWar is good for marketing,
though not everything military is directly useful in civilian life.
Besides, they're ex-Flyboys, and I'm an Ex-Army guy that did COMSEC for
global-SCIF communications (and you thought it was all air-gap security
;-) ). I would be interested in a comparison of IDS sensor software
system techniques, configurability and performance (ISS, NFR,
Wheelgroup).
Bill Stout
--- End Message ---
|
|
