Knowee
Questions
Features
Study Tools

An active IDS system often performs which of the following actions? (Select two.)answerCannot be detected on the network because it takes no detectable actions.Performs reverse lookups to identify an intruder.Updates filters to block suspect traffic.Requests a second logon test for users performing abnormal activities.Traps and delays the intruder until the authorities arrive.

Question

An active IDS system often performs which of the following actions? (Select two.)answerCannot be detected on the network because it takes no detectable actions.Performs reverse lookups to identify an intruder.Updates filters to block suspect traffic.Requests a second logon test for users performing abnormal activities.Traps and delays the intruder until the authorities arrive.

🧐 Not the exact question you are looking for?Go ask a question

Solution

An active Intrusion Detection System (IDS) typically performs the following two actions:

  1. Updates filters to block suspect traffic: An active IDS has the capability to not only detect potentially harmful activities but also to take action to prevent them. This is often done by updating network filters to block traffic from sources identified as suspicious or malicious.

  2. Performs reverse lookups to identify an intruder: In order to gather more information about a potential intruder, an active IDS may perform reverse lookups. This involves using the suspicious IP address to gather information such as the associated domain name or the geographical location. This information can be used to further investigate the potential threat.

This problem has been solved

Similar Questions

Which of the following describes the worst possible action by an IDS?answerThe system correctly deemed harmless traffic as inoffensive and let it pass.The system identified harmless traffic as offensive and generated an alarm.The system identified harmful traffic as harmless and allowed it to pass without generating any alerts.The system detected a valid attack and the appropriate alarms and notifications were generated.

Which IDS method searches for intrusion or attack attempts by recognizing patterns or identifying entities listed in a database?answerSignature-based IDSHeuristics-based IDSAnomaly-analysis-based IDSStateful-inspection-based IDS

Which type of IDS monitors network traffic for particular network segments or devices?

What action will an IDS take upon detection of malicious traffic?reroute malicious traffic to a honeypotcreate a network alert and log the detectionblock or deny all trafficdrop only packets identified as malicious

3.Question 3What application monitors system activity, then produces alerts about possible intrusions? 1 pointIntrusion detection systemPlaybookProduct manualWord processor

1/3

Upgrade your grade with Knowee

Get personalized homework help. Review tough concepts in more detail, or go deeper into your topic by exploring other relevant questions.