InstantForum.NET v2.9.0SQLServerCentralhttp://www.sqlservercentral.com/Forums/notifications@sqlservercentral.comThu, 24 May 2012 11:06:50 GMT20http://www.sqlservercentral.com/Forums/Topic130466-122-1.aspx<P><FONT color=#ff0000>"EDITORS NOTE: This one was my fault. I was coordinating between the vendor and reviewer and did not respond to things in a timely manner. Once I clarified the reviewer with AppRadar, they issued a key immediately."</FONT></P><P><FONT color=#111111>I must mention that I had requested an evaluation copy of this software as a private individual before doing this review. It wasn't until a week later, after AppRadar had been informed that I was doing this review, that I received a response.</FONT></P>Fri, 24 Sep 2004 10:52:00 GMTDale Coreyhttp://www.sqlservercentral.com/Forums/Topic130466-122-1.aspx<P>"<SPAN style="FONT-SIZE: 10pt; COLOR: red">COMMENT: Most of the review was taken from our documentation."</SPAN></P><P><SPAN style="FONT-SIZE: 10pt; COLOR: red"><FONT color=#111111>The documentation was used as a "guideline" to emphasize key marketing points. Bullet items were kept mostly intact but with edits. All other content from the documentation was mainly rewritten. All other comments/observations are of the author's personal opinion. I am sure AppRadar</FONT></SPAN><SPAN style="FONT-SIZE: 10pt; COLOR: red"><FONT color=#111111> appreciated all the original screen shots that I produced during the evaluation and review (as was lacking in their documentation).</FONT></SPAN></P><P><SPAN style="FONT-SIZE: 10pt; COLOR: red"><FONT color=#111111>The AppRadar software was loaded on a dual processor pentium Windows 2000/SQL 2000 server, on which,two days of comprehensive testing and evaluation was performed. Each screen shot in the review is original from the author (with the exceptions of Figures 1 and 10). </FONT></SPAN><SPAN style="FONT-SIZE: 10pt; COLOR: red"><FONT color=#111111>When testing the reporting interface, reporting was apparently the most dissappointing feature, and therefore, was highlighted as such.</FONT></SPAN></P>Thu, 23 Sep 2004 11:25:00 GMTDale Coreyhttp://www.sqlservercentral.com/Forums/Topic130466-122-1.aspx<P class=MsoNormal style="MARGIN: 0in 0in 0pt"><SPAN style="FONT-SIZE: 10pt; COLOR: red"><FONT color=#000000>"</FONT>COMMENT: It seems reporting was the only “feature” really evaluated in this review. AppRadar’s ability to as an Audit tool is just one component, as the review showed. What was failed to be pinpointed was AppRadar’s ability to detect malicious activity (ie. Buffer overflows and web application attacks including SQL injection and cross-site scripting), separating our solution from other vendor products in the space."</SPAN></P><P class=MsoNormal style="MARGIN: 0in 0in 0pt"><SPAN style="FONT-SIZE: 10pt; COLOR: red"></SPAN> </P><P class=MsoNormal style="MARGIN: 0in 0in 0pt"><SPAN style="FONT-SIZE: 10pt; COLOR: red"><FONT color=#111111>Excuse me? Buffer overflow and SQL injection was mentioned in the review. However cross-site scripting was not even highlighted by AppRadar in their documentation as a "selling point", anywhere. After using the reporting function, you will understand why I rated the feature set as a 3 out of 5. Detecting malicious activity, as well as reporting such acitivity, are equally as important in a DBA's world. In fact, in the intereset of a DBA, I think reporting is MORE important in order to evaluate the activity properly after it has been detected.</FONT></SPAN></P>Thu, 23 Sep 2004 11:03:00 GMTDale Coreyhttp://www.sqlservercentral.com/Forums/Topic130466-122-1.aspxComments posted to this topic are about the content posted at <A HREF=http://www.sqlservercentral.com/columnists/dcorey/reviewappradar.asp>http://www.sqlservercentral.com/columnists/dcorey/reviewappraThu, 05 Aug 2004 16:40:00 GMTDale Corey