Please watch the following video:
There is often a debate regarding Host-based detection systems versus Network-based Intrusion Detection Systems. What are the pros and cons of each?
What would you recommend if your organization could afford an HID or NID Approach? Please support your view with research.
Based on some additional research, what are some of the most common issues with the deployment of HIDS in an organization with 1000s of computers?
As far as viruses are concerned, are we fighting a losing battle? Are there too many and is the problem too rampant?