[Gllug] latest zero day Word flaw

[- Tethys]

On 12/7/06, Bruce Richardson <itsbruce at workshy.org> wrote:

> Skilled practitioners claim to be able to use Snort rulesets to detect
> new, undocumented attacks and you could certainly use them to detect
> patterns of network activity that indicated that there had been a
> successful breach of security, without needing to know how it had been
> done.

Oh, I know the theory. I'm just not aware of anyone having ever put it
to the test int he real world. In every single instance that I've come
across, without exception, NIDS has been an item on a management tick
list, rather than actually being genuinely useful.

Tet
-- 
Gllug mailing list  -  Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug