Sourcefire developed Snort, an open source intrusion prevention system capable of real-time traffic analysis and packet logging. Snort was acquired (and is now supported) by Cisco in 2013.
N/A
Powertech Exit Point Manager for IBM i
Score 9.5 out of 10
N/A
Powertech Exit Point Manager for IBM i from HelpSystems allows users to reduce the risk of unauthorized and unaudited server access with system access monitoring, tracking and control software for IBM i.
If a colleague was looking to tighten down their network I can easily recommend Snort to them. It gives you some more peace of mind knowing that its always scanning traffic for malicious looking code. Even things your major firewalls and security hardware might miss, Snort has picked up. Its an easy recommendation for me.
As specified earlier, the product is very helpful to monitor the FTP, ODBC, JDBC, SQL and remote commands. What queries are coming to the system and who is issuing the commands so that we can analyze the and restrict their access if its not required. It helped us catch [a lot of] unauthorized users.
The threat intelligence from Cisco TALOS is unparalleled. This is grafted into the Sourcefire application which greatly improves security visibility. With this there are a lot of groups that you can use for white listing or blacklisting, knowing its being updated in the background without additional work from you.
Flexible. Instead of putting a traditional firewall inline you can put a source fire appliance (or firewall with sourcefire on-board) to not only block/allow traffic, but if you insights into it, and do some forms of threat scoring.
In depth information. Sometimes a bit overwhelming, but you are able to do more than just see alerts, you can view the full information and packets that lead to the conclusion, though the conclusion is prepared in advance for you.
Adding a user to the exit point manger and then specifying the same user to restrict for particular service is bit complex i feel, instead of that making only one entry to restriction would be good.
Snort was chosen mainly for the ease and cost. With Snort we was able to set up in a matter of minutes without any professional services needed. If you are used to packet tracing the old fashion way, this is the product for you.
Helpsystems was one of the best leading third-party service provider in the Market for IBM i. Since we are already customer for the Helpsystems and their support is awesome. We need the best products in market and Helpsystems has all the good tools that suits to my environment. All we need is the best support when its required which Helpsystems support team doing at its best.
is be identical or equivalent to More (Definitions, Synonyms, Translation)
