 |
 
Frequently Asked Questions
PitBull LX
PitBull LX is a software-based application security solution that combines robust security with ease of use. Unlike common perimeter-based security products such as firewalls and intrusion detection systems, PitBull LX delivers security where it is needed most—on your most sensitive servers that make up the 'last mile' of the e-business transaction. PitBull LX is ideal for protecting web servers, application servers, DNS servers, mail servers, shell servers, database servers and e-commerce servers from both external and internal attacks. What is the relationship between PitBull LX and Argus' other PitBull products? PitBull LX is independent of PitBull Foundation and Foundation Suite, and supports operating systems (Linux, for example) that are not supported by other Argus solutions. PitBull LX provides a similar type of application isolation technology with a major emphasis on ease of use. Is it really that easy to configure and administer a PitBull LX-enabled system? Yes. The following features make PitBull LX easy to administer and configure.
Does PitBull LX solve a root compromise? Yes. If a hacker exploits a bug in a process running as superuser and obtains a "root shell", this shell (or whatever the hacker decides to run) will be limited to the Secure Application Environment (SAE) of the process that he/she exploited. Through proper configuration the attacker will not be able to gain access to other parts of the system, but will be locked inside a 'jail cell' with no way out. This is accomplished through properly configured file and network access domains as well as process security flags. These flags limit a process' ability to attain certain super-user abilities. For example, a process that has the ASG_RES_MNT flag set will be unable to successfully perform the following system calls: mount, umount, and oldumount. What operating systems are supported? PitBull LX supports Solaris from Sun Microsystems. Perviously LX has also been available for Linux and AIX from IBM. For an up-to-date list of supported platforms please consult your nearest Argus sales office or Argus partner. You may also email your question to info@argus-systems.com PitBull LX is attractively priced via a per-processor-based pricing model. Consult your nearest Argus sales office or Argus partner for more details. Has the product undergone ITSEC or Common Criteria certification? PitBull LX was first introduced in January 2001. It has not undergone independent certification at this time. If you have a mandatory requirement for Common Criteria-type certification please let us know. PitBull LX adheres to the same rigorous design and development processes as Argus' PitBull Foundation product, which has successfully completed multiple independent certifications. How can I be confident in its ability to protect my most sensitive servers? PitBull LX, before it was even officially released, was used in e-WEEK's OpenHack III contest. PitBull LX was the only security technology used to secure a DNS/mail server running Red Hat Linux 6.2. No firewalls or intrusion detection systems were used to protect the server. Sixteen days and over five million hacking attempts later, the LX-protected system was not hacked. Every attempt was thwarted. Is PitBull LX available for desktop systems or systems running Windows? Currently LX is only available for UNIX-based servers. Windows support is not available at this time.
|
 |
||||||||||||||
 |
||||||||||||||||
