Quoting Mark Castillo <[EMAIL PROTECTED]>:
>
> It is not a product that we are planning to have publicly available,
> although we develop it in a commercial release-like fasion. We do have
> the software running on about > 100 customer sites now. The company I work
> for is Counterpane Internet Security (http://www.counterpane.com), and our
> software team builds the tools that provide our monitoring service.
You work for _Counterpane_?!? I am involved in open source Java cryptography
projects, and cypto/security is where alot of my experience lies. I am, of
course, quite familiar with Counterpane. ;-)
You work with Bruce and shit ... damn, what and honor THAT would be :)
It's a shame that the product won't be publicly available, because as a
crypto/security nut, I would *love* to see what you Counterpane guys come up
with on intrusion detection. I bet it rocks.
> I am the lead Java guy for the event detection engine that runs on the
> "sentry" intrusion detection box (no GUI, no human interface). We have plans
> to allow customers to see the status of their network via an https interface.
> The interface will also allow them to chat live with a security analyst
> (which we have 24/7).
That's cool as hell. I've been working on the Tomcat standalone SSL stuff these
days, in some part because my company is also in the process of developing a
product (a cluster management tool) which will need it. If you should ever run
across anything, or need something, in that department, let us know, and I'll
see what I can do =)
> Right now we've integrated Acme server (and integrated https and login
> session support ourselves, which was a royal pain). So, I'm trying to
> figure out if we want to continue maintaining (fixing/rewriting?) the Acme
> server or scrap it and go to something else. We want code that is small enough
> to audit (for security), but functional enough to support servlets and
> secure sessions.
I think Tomcat can definitely accomodate you ;-)
- Christopher
