IPS’ are just fun, aren’t they? Bunch of high-speed pattern matchers with built-in protocol decodes. Well, I built one a while back and got tired after 5 years. There’re only so many signatures you can have in a product before you run out of DFA/NFA space and you have to resort to turning off less important ones (i.e., *ahem* low severity) for the sake of performance. Interestingly enough, performance and security are at cross-roads. The more secure you are, the slower you run. Just the way things works, I suppose.
-
RSS Feeds
Categories
- Advisories (23)
- Android (7)
- Announcements (22)
- Atlassian (1)
- Blitz (26)
- Cloud (32)
- CouchDB (22)
- DevOps (11)
- DLP (2)
- DoS (4)
- DPI (12)
- Drupal (1)
- EC2 (7)
- Firewall (7)
- Forensics (4)
- Fuzzing (14)
- Heroku (7)
- HTML5 (4)
- iPhone (11)
- IPS (11)
- IPv6 (11)
- jQuery (3)
- Netflix (7)
- New Relic (1)
- node.js (2)
- Outlook (1)
- pcapr (23)
- Performance (20)
- Rants (13)
- Redis (1)
- Release (4)
- Research (13)
- Mutations (9)
- SCADA (2)
- Scalability (15)
- Scale (19)
- Studio (32)
- Talk (3)
- Testing (38)
- Tools (28)
- C (5)
- C++ (3)
- JavaScript (8)
- Ruby (14)
- Training (4)
- Tropo (1)
- UI (3)
- Uncategorized (10)
- Video (7)
- Visualization (1)
- WAN Acceleration (1)
- Wireshark (7)
- xtractr (3)
-
Recent Posts
Archives
-
-
