Updating macafee detection signature
IDS come in a variety of “flavors” and approach the goal of detecting suspicious traffic in different ways.There are network based (NIDS) and host based (HIDS) intrusion detection systems.Anomaly Based An IDS which is anomaly based will monitor network traffic and compare it against an established baseline.
This type of information is especially important if you come across new code, or code variant.
An intrusion detection system (IDS) monitors network traffic and monitors for suspicious activity and alerts the system or network administrator.
In some cases the IDS may also respond to anomalous or malicious traffic by taking action such as blocking the user or source IP address from accessing the network.
Reactive IDSA reactive IDS will not only detect suspicious or malicious traffic and alert the administrator, but will take pre-defined proactive actions to respond to the threat.
Typically this means blocking any further network traffic from the source IP address or user.