Last Updated on June 17, 2021 by Admin
What characteristic of the Snort term-based subscriptions is true for both the community and the subscriber rule sets?
- Both have a 30-day delayed access to updated signatures.
- Both use Cisco Talos to provide coverage in advance of exploits.
- Both are fully supported by Cisco and include Cisco customer support.
- Both offer threat protection against security threats.
Answers Explanation & Hints:
There are two types of term-based subscriptions:
– Community Rule Set – Available for free, this subscription offers limited coverage against threats. The community rule set focuses on reactive response to security threats versus proactive research work. There is also a 30-day delayed access to updated signatures meaning that newest rule will be a minimum of 30 days old. In addition, there is no Cisco customer support available.
– Subscriber Rule Set – Available for a fee, this service provides the best protection against threats. It includes coverage of advance exploits by using the research work of the Cisco Talos security experts. The Subscriber Rule Set also provides the fastest access to updated signatures in response to a security incident or the proactive discovery of a new threat. This subscription is fully supported by Cisco.