Checkpoint IPS

• Previous message (by thread): Checkpoint IPS
• Next message (by thread): Checkpoint IPS
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 6 Feb 2015, at 0:55, Matthew Huff wrote:

> What if you are a hosting company and those aren't your servers to 
> patch?

Then it isn't the operator's problem.

> What about the time to patch 200+ servers versus configuring one 
> location?

Operators should have sufficient automation to do this quickly.  If not, 
they're Doing It Wrong.

> What if you have to schedule the staff and maintenance window to patch 
> the servers?

See above.

> What if you have legacy equipment that you must continue using, but 
> the vendor is slow to provide the patch.

There are other ways (reverse proxies, on-box systems like ModSecurity, 
et. al.); or take them offline.

-----------------------------------
Roland Dobbins <rdobbins at arbor.net>

• Previous message (by thread): Checkpoint IPS
• Next message (by thread): Checkpoint IPS
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]