Which list identifies the possible types of alerts that the Sourcefire System can generate as notification of
Which list identifies the possible types of alerts that the Sourcefire System can generate as
notification of events or policy violations?
Which option is an example of such a rule?
Correlation policy rules allow you to construct criteria for alerting on very specific conditions.
Which option is an example of such a rule?
Which option is a remediation module that comes with the Sourcefire System?
Which option is a remediation module that comes with the Sourcefire System?
What does the whitelist attribute value "not evaluated" indicate?
What does the whitelist attribute value “not evaluated” indicate?
which type of preprocessor?
Controlling simultaneous connections is a feature of which type of preprocessor?
Which statement represents detection capabilities of the HTTP preprocessor?
Which statement represents detection capabilities of the HTTP preprocessor?
which port scan type?
A one-to-many type of scan, in which an attacker uses a single host to scan a single port on
multiple target hosts, indicates which port scan type?
Which feature of the preprocessor configuration pages lets you quickly jump to a list of the rules associated
Which feature of the preprocessor configuration pages lets you quickly jump to a list of the
rules associated with the preprocessor that you are configuring?
What does packet latency thresholding measure?
What does packet latency thresholding measure?
Which statement is true in this situation?
Suppose an administrator is configuring an IPS policy and attempts to enable intrusion rules
that require the operation of the TCP stream preprocessor, but the TCP stream
preprocessor is turned off. Which statement is true in this situation?