Which engine or module presents alert and log data in the format that you specify?
Which engine or module presents alert and log data in the format that you specify?
which other function set can Snort perform?
Other than intrusion sensing, which other function set can Snort perform?
Which output is in a lightweight, binary form?
Which output is in a lightweight, binary form?
What does packet sniffing do?
What does packet sniffing do?
which set of components is a major security concern?
When building a platform for a Snort installation, which set of components is a major
security concern?
What are the CIDR notation, network address, broadcast address, and valid IP address in your assigned range?
In the IP addressing scheme of your organization, each subnet consists of 4096 hosts, and
the beginning of the addressing scheme is 172.16.0.0. Your remote office is allocated the
range of addresses from the first subnet. What are the CIDR notation, network address,
broadcast address, and valid IP address in your assigned range?
Which statement about implementing DAQ is true?
Which statement about implementing DAQ is true?
Which version of libpcap does DAQ require?
Which version of libpcap does DAQ require?
which ports should remote access of the sensor be restricted?
If Snort is installed and the sensor, database, and web server all reside on the same
machine, to which ports should remote access of the sensor be restricted?
what would you use in front of the executable name?
To execute a command in Linux while in the directory where it is located, and be sure you
are only running that particular copy, what would you use in front of the executable name?