Get this Security+ CertiGuide for your own computer. |
Click Here! Use coupon code "certiguide" to save 20%! (Expires 2004/12/31) |
|
Also available: 300-question Security+ practice test! |
Get It Here! |
|
|
3.4.2.2 Passive Detection
Passive methods used by host based
systems mirror those available on NIDSs, including:
- Logging the event.
- Emailing or instant messaging an administrator.
- Paging an on-call administrator.
- Displaying an on-screen alarm.
- Sending an alert to a monitoring system.
- Sending an SNMP trap to flag the event.
Passive HIDS
With passive detection, a HIDS will take the same types of actions as would a passive detection NIDS, when an attack is detected, like logging the event, notifying an administrator, displaying an alarm/alert, or sending an SNMP trap to a monitoring console. |
If you find CertiGuide.com useful, please consider making a small Paypal donation to help the site, using one of the buttons below. You can also donate a custom amount using the far right button (not less than $1 please, or PayPal gets most/all of your money!) In lieu of a larger donation, you may wish to consider buying an inexpensive PDF equivalent of the CertiGuide to Security+ from StudyExam4Less.com. (Use coupon code "certiguide" by December 31, 2004 to save 20%!) Thanks for your support! |
|
|
Home -
Table Of Contents - Contact Us
CertiGuide for Security+ (http://www.CertiGuide.com/secplus/) on CertiGuide.com
Version 1.0 - Version Date: November 15, 2004
Adapted with permission from a work created by Tcat Houser et al.
CertiGuide.com Version © Copyright 2004 Charles M. Kozierok. All Rights Reserved.
Not responsible for any loss resulting from the use of this site.
|