<h2 id="heading-notes-on-security">Notes on Security</h2>
<ol>
<li>The main role of IDS is to report attacks on the monitored system/network.</li>
</ol>
<ol>
<li>The NIDS is not a replacement to the firewall according to the defense in depth (DiD) concept</li>
</ol>
<ol>
<li>The ability of something or someone to influence the behavior of a group of people is social engineering.
</li>
<li>A basic honeypot can be made by monitoring the non-service ports on an active server
</li>
<li>Port scanning is a passive phase of attacking
</li>
<li>Encrypting traffic makes it harder. for NIDS to analyze
</li>
<li>The more restrictive Firewall must have the default deny rule
</li>
<li>The worms. use the network to send copies of themselves to other machines
</li>
<li>The defense in depth DiD concept deals with the information layer followed by The application, the host, and the network layers
</li>
</ol>

## Notes on Security

1. The main role of IDS is to **report** attacks on the monitored system/network.


2. The NIDS is **not a replacement to** the firewall according to the defense in depth (DiD) concept


3. The ability of something or someone to influence the behavior of a group of people is **social engineering**.

4. A basic honeypot can be made by monitoring the **non-service** ports on an active server

5. Port scanning is a **passive** phase of attacking

6. Encrypting traffic makes it **harder**. for NIDS to analyze

7. The more restrictive Firewall must have the default **deny** rule

8. The **worms**. use the network to send copies of themselves to other machines

9. The defense in depth DiD concept deals with the information layer followed by **The application, the host, and the network layers**