This week, the Pentagon said computer networks in the United States, Germany, Britain and France were hit last year by what they call "multipleintrusions," many of them originating from China.
So for each potentially intrusive connection, Snort needs a rule (or rules that cover multiple related intrusions).
因此对于每一个可能的入侵连接,Snort 都需要使用一条规则(或涵盖多个相关入侵的规则)。
3
In respect to the issue of alarms flooding, which is resulted from multiple detection sensors in terms of intrusions, this article proposes a novel on-line model on alarms clustering and fusion.