[Dshield] DShield vs. Symantec: new features?

Mark Tombaugh mtombaugh at alliedcc.com
Thu Jan 8 18:34:42 GMT 2004


On Thursday 08 January 2004 10:33 am, Erwin Van de Velde wrote:
> -You have a webserver running of the type that is being attacked: closing
> the port protects you, till you have taken appropriate measures

In the world of 99.999% uptime this isn't an option. Plus, what if the service 
isnt even vulnerable and it goes down defensively? This system would need to 
be aware of the vendor and version of all services listening on every machine 
to be effective..

And then theres the potential abuse factor...

-- 
Mark Tombaugh <mtombaugh at alliedcc.com>
Allied Computer Corporation <http://www.alliedcc.com>
USiHOST, iNC <http://www.usihost.com>





More information about the list mailing list