nerdexam
Exams312-50V10Questions#288
EC-Council

312-50V10 · Question #288

312-50V10 Question #288: Real Exam Question with Answer & Explanation

Sign in or unlock 312-50V10 to reveal the answer and full explanation for question #288. The question stem and answer options stay visible for context.

Evading IDS, Firewalls, and Honeypots

Question

The use of alert thresholding in an IDS can reduce the volume of repeated alerts, but introduces which of the following vulnerabilities?

Options

  • AAn attacker, working slowly enough, can evade detection by the IDS.
  • BNetwork packets are dropped if the volume exceeds the threshold.
  • CThresholding interferes with the IDS' ability to reassemble fragmented packets.
  • DThe IDS will not distinguish among packets originating from different sources.

Unlock 312-50V10 to see the answer

You've previewed enough free 312-50V10 questions. Unlock 312-50V10 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.

Unlock 312-50V10 - $49.99 / 30 daysSign in

Topics

#IDS evasion#alert thresholding#slow attack#detection bypass
Full 312-50V10 Practice