To replace or not to replace? That is the question. (PG)

I have PG. With all that's been going on with DiamondCS, should I keep it or replace it with say, SSM? Suggestions...thoughts!!

 

Personnally, since PG doesn't seems to be developp anymore and the fact that DiamondCS don't seems to give support anymore, I have replaced it by Prosecurity (http://www.proactive-hips.com/)...

 

Hello,
No need to replace it if it works for you and you like it.
Mrk

 

Im still employing it but then its just one of several tripwires rather than a frontline defense like it used to be.

Ive been making the switch recently from heavily relying on HIPS and other rulebased whitelists to employing virtualization\sandboxing as a primary defense
and becoming more careful on incorporating new aps with even the slightest hint of a pedigree problem

seriously considering setting up a new zoo and finally getting serious about both Linux and Snort.

HIPS protected systems are still Id say rather secure since there is still alot of easier picking, but as HIPS technologies are incorporated into more and more security and become more popular those odds decrease. If a vulnerability is easy to incorporate into malicious code it probably will be and without development it wont get addressed.

 

Too much emphasis is put on vendor support, more often by the vendors themselves. Just because a vendor stops supporting a product doesn't make it obsolete or any less effective. It only means that they won't be fixing any new problems that arise and that there won't be any new versions. If you're happy with an application and it works properly, use it.
Rick

 

Perhaps one benefit, if there is one to no further development of PG, is that the black hats will quit development of ways to shoot holes in it. Making in a worth while app. again. <TZ and more wishful thinking)