a) What are the four functions of IDSs?
b) What are the two types of analysis that IDSs usually do?
c) What types of action did this section mention?
d) What information should alarms contain?
e) What is the purpose of log summary reports?
f) Describe interactive log file analysis?

