[Dshield] New Security Function Tools
ed.truitt at etee2k.net
Fri May 10 15:20:45 GMT 2002
Well, it sort of depends on what you want to emphasize. "Security tools" is
a pretty large category. If you are just getting started, I would suggest a
vulnerability scanner, to find out just what the scope of your "problem"
is. I am sure you can find some tools to implement, but you also might want
to check out a service like the one Qualys provides, as a means of
implementing a solution in less time. You might also look at an IDS product
like Snort, again the idea is to find out what is going on. You might also
check Foundstone out. (BTW, I am not employed by, or a stockholder of,
either firm, but I have had some personal experience with these
If you would like, we can continue this conversation off-list, as I would be
interested in hearing about what you find.
PGP fingerprint: 5368 D25E 468C A250 9833 CCD6 DBAE 9C25 02F9 0AB9
"Note to spammers: my 'delete' key is connected to YOUR ISP.
Also, if you send me UCE, I reserve the right to post your spew
on my Web site, with the appropriate color commentary, so that
others may have a good laugh at your expense."
----- Original Message -----
From: "Olsen, Richard" <ROlsen at dit.state.va.us>
To: <list at dshield.org>
Sent: Friday, May 10, 2002 8:49 AM
Subject: [Dshield] New Security Function Tools
> We are beginning to really emphasize (my new assignment) security
> for our Internet and application servers which have grown from 3 to 50
> servers in the last year and a half or so. At this point we have almost no
> tools. My manager has some year-end money that needs to be committed this
> month and offered it for security tools. Can anyone recommend a basic set
> tools or point me to a place to seek this? Basically, we're the technology
> behind state.va.us including applications and databases. So we're looking
> URLScan for starters, but all advise is appreciated. Thanks kindly.
> Dshield mailing list
> Dshield at dshield.org
> To change your subscription options (or unsubscribe), see:
More information about the list