Monday, August 29, 2011


from dan glass' G+ post

not a bad representation of the relative effectiveness of intrusion detection systems and intrusion prevention systems at protecting your stuff.

although, when you get into details like why there's a difference between them, it actually doesn't have anything to do with the size of the dog or the size of the fight in the dog (or anything similar or analogous). if an intrusion detection system could say unequivocally that the thing it's detecting should be stopped then it's really not that hard to stop it - it's coming up with the accurate classification of badness in the first place that's hard.