Neohapsis OSEC - Test Results - NFR NID-310 3.2 - Product Information

LOCATION: Neohapsis / OSEC / Test Results / NFR NID-310 3.2 / Product Information

About OSEC

Test Criteria

Test Results

Resources

Product Information		Source

Product Owner:	NFR	NFR
Contact Information:	www.nfr.com	NFR
Product Name:	NID-310	NFR
Product Version:	NID-310 / engine version 3.2	Neohapsis

Product Description:	NID-310 100Mbit sensor	Neohapsis
MSRP of solution (as tested):	$15,500 (310: $10,500 / CMS: $5000)	NFR
Tester Notes:	Sniffer mode	Neohapsis

Test Start Date:	21-Mar-2003	Neohapsis
Test End Date:	1-May-2003	Neohapsis
Preliminary Report Date:	2-May-2003	Neohapsis
Report Issue Date:	2-May-2003	Neohapsis
Last Revision:	2-May-2003	Neohapsis

Tuning:	Default signature set was used with the following changes: All "LDP" signatures enabled All "SNMP" signatures enabled All "TCP" signatures disabled "Authentication::Authentication BE" disabled "FTP::Compliance" disabled "WWW" signatures enabled: apache, iis attacks, cgi attacks, coldfusion attacks, user-defined variables "WWW" Signatures disabled: strict compliance, bad guy, general web logs Installed "OS Fingerprint" package (not included base 3.2 install) Variable "www_iis mult_host_alert_FILTER" = 0.0.0.0/0 (false positive) Signatures were updated to current versions as of 3/26/2003. Signature "counts": [packages] 25/20/0 / [backends] 128/89/0	Neohapsis

About OSEC | Test Criteria | Test Results | Resources

Copyright 2002, Neohapsis, Inc.