|Read this whole guide offline with no ads, for a low price!|
Use coupon code "certiguide" to save 20%!
|Need more practice? 300 additional Security+ questions!|
|Get It Here!|
18.104.22.168 Passive Detection
Passive methods used by host based
systems mirror those available on NIDSs, including:
- Logging the event.
- Emailing or instant messaging an administrator.
- Paging an on-call administrator.
- Displaying an on-screen alarm.
- Sending an alert to a monitoring system.
- Sending an SNMP trap to flag the event.
With passive detection, a HIDS will take the same types of actions as would a passive detection NIDS, when an attack is detected, like logging the event, notifying an administrator, displaying an alarm/alert, or sending an SNMP trap to a monitoring console.
|If you find CertiGuide.com useful, please consider making a small Paypal donation to help the site, using one of the buttons below. You can also donate a custom amount using the far right button (not less than $1 please, or PayPal gets most/all of your money!) In lieu of a larger donation, you may wish to consider buying an inexpensive PDF equivalent of the CertiGuide to Security+ from StudyExam4Less.com. (Use coupon code "certiguide" by December 31, 2004 to save 20%!) Thanks for your support!|
Table Of Contents - Contact Us
CertiGuide for Security+ (http://www.CertiGuide.com/secplus/) on CertiGuide.com
Version 1.0 - Version Date: November 15, 2004
Adapted with permission from a work created by Tcat Houser et al.
CertiGuide.com Version © Copyright 2004 Charles M. Kozierok. All Rights Reserved.
Not responsible for any loss resulting from the use of this site.