What IDS / IPS (Intrusion Detection and Prevention Systems), as well as UA protection tools, should be used in a Windows environment?

A

Alexey2012-06-29 14:00:43

Data processing

Alexey, 2012-06-29 14:00:43

Good day.
There are 1000+ PCs with MS Windows board. There is AD and a bunch of other Windows servers ( terminal, mssql, oracle, hyper-v, failover cluster) . There is a file storage for the exchange of information, sometimes confidential and constituting an official secret.
Auditing of all file and connection access events is needed, and flexible. Advise any IDS/IPS solutions for this. Can someone use already, can someone used?
h. s. wiki , wiki , netconfig.ru/server/ids-ips
h. s. s. I agree that I am wrong and confusing definitions. We need automated means of protection against unauthorized access.

Reply

Answer the question

In order to leave comments, you need to log in

3 answer(s)

V

vedburtruba, 2012-06-29
@capt_Rimmer

capt_Rimmer, you are somewhat confusing IPS with means of protection against unauthorized access. IPS will not be able to determine whether the user has permission to work with certain files, it can determine that such and such activity is anomalous and not legitimate, that such and such traffic is detected by the signatures of some network worm or exploit.

S

Sicness, 2012-06-29
@Sicness

Have you considered Kaspersky Internet Security? If yes, can you tell me why not?

S

ShadowHacker, 2012-06-29
@ShadowHacker

Mm… Prayer book :)