There has been a lot of  FUD going on in the IDS/IPS market. Stonesoft has launched a campaign saying that their product is the only able to stop some advanced attacks that are not public.

I am not an expert in the field, but there are two things that worry me:

  • Somebody saying that they can stop all the advanced attacks with “anti evasion techniques”, but the are no details or whatsoever.
  • All the competitors are not able to achieve the same results.

For me, it looks like a nasty FUD trying to gain some market in the short term, but history has demonstrated that it is a bad strategy.

Anyway, I always trust people that openly discusses the problems, like researchers and open source developers.

Some comments from SourceFire

Some lols from Daily Dave mailing list