Re: Question on maleware
I have never actually used an IDS - it is to reactionary for me. Someone has to actually start hacking your site before the IDS activates, and it is possible to get around them. If your first attack works, the IDS won't even try to stop you in some cases. I go with the vulnerability assessments myself. I have software that I use to try to break into my own servers, and then fix any problems I find with these tools. My site is also audited by an external company daily. When we were comparing auditors, we had the site scanned by four of them (ScanAlert and ControlScan being two of them, ScanAlert is being bought by McAfee I think and is the one we use, ControlScan is a little less expensive but doesn't have the same client base, honestly though I liked ControlScan better). Between the four of them, they were not able to find a single vulnerability in our web server. Using my own tools, I was able to catch most of the major vulnerabilities.
This is, again, a technical solution and it takes some know-how to implement, but I might be able to set something up for you. If you send me a PM with your domain name, I can create a profile you might be able to use with one of the better tools.
|