I wonder if Mcafee HIPS with firewall and IPS enabled provides protection against OpenSSL Heartbleed bug? i hope it does!
I believe Alhaawi is refering to the endpoint product HIPS not NSP (which is an appliance based solution). HIPS can be deployed and managed via ePO as a software firewall and IPS for workstations and servers.
exactly this is what i am asking about if the Mcafee HIPS for desktop and servers is able to prevet the attack using OpenSSL Heartbleed bug? when i asked the question i thought i am in section of endpoint HIPS! thanks moriega
taking about this internally, but probability is low since this attach does not change anything on the client itself - we don't think it will hit any of the HIPS trigger points - it's all in the network stack. We'll look into it though.
OpenSSL TLS DTLS Heartbeat Extension Packets Information Disclosure