Biased is ok. How does one go about validating that a managed service provider stuff is actually working? Is there some sort litmus test procedure that the customer has to sign off signifying that the manage service provider selected is actually receiving and responding to valid intrusions? How long is the tuning process to adjust to particular customer's environment How long is the provisioning process from signed contract to actual turning up the customer and handing them over to ops or monitoring? What type of people are actually doing the monitoring (certified and trained security experts) or (people off the street and then becoming a human IDS)?? DigitalMojo does not state how they do this except a bunch of smoke and mirrors about ShadowPatrol or ShadowWatch, playing off the them of "Only the Shadow Knows".. There has to be more to managed security services than this ?? /m _______________________________________________ Firewalls mailing list Firewalls@lists.gnac.net http://lists.gnac.net/mailman/listinfo/firewalls