Reactions

A reaction is what an agent does when it recognizes a signature of a particular severity.

An agent reacts in one of three possible ways:

A security policy may state, for example, that when an agent recognizes an Information level signature, it logs the occurrence of that signature and allows the process to be handled by the operating system; and when it recognizes a High level signature, it prevents the process.

 

Logging can be enabled directly on each signature.

Copyright © 2006 McAfee, Inc. All Rights Reserved.