From pmb@iss.net  Sun Sep 15 06:16:51 1996
Received: from phoenix.iss.net (phoenix.iss.net [204.241.60.5]) by suburbia.net (8.7.4/Proff-950810) with SMTP id GAA24606 for <best-of-security@suburbia.net>; Sun, 15 Sep 1996 06:16:48 +1000
Received: (from pmb@localhost) by phoenix.iss.net (8.6.13/8.6.12) id QAA26407; Sat, 14 Sep 1996 16:12:27 -0400
From: Pat Becker <pmb@iss.net>
Message-Id: <199609142012.QAA26407@phoenix.iss.net>
Subject: Re: Phrack vs. RealSecure
To: best-of-security@suburbia.net
Date: Sat, 14 Sep 1996 16:12:27 -0400 (EDT)
X-Mailer: ELM [version 2.4 PL24 PGP2]
Content-Type: text

This post is slightly off topic, but I feel it is needed after the 
allegations posted by SSI@upt.org

First of all the timing of the alpha release of RealSecure and the
release of Phrack is coincidental.  Although Dave Meltzer works at ISS
as an engineer he has not contributed to the RealSecure product.
period.  

What David Meltzer does on his own time is not a concern of ISS.  It
just happens that Dave is interested in computer security.  

If you look at the RealSecure product there are many other features 
beyond the SYN/RST attack.  I consider the SYN/RST problem a small 
part of RealSecure.   

And panix or anyone else is not our first customer.  At this point the 
product is in alpha and we do not have any customers.  We are making
it publicly available to get constructive input as we move toward
release.

The incorporating of the SYN flood denial of service recognition
into RealSecure actually came about because of DOS checks we already
had in our ISS Internet Scanner (now known as SafeSuite).

Pat Becker
pmb@iss.net