Published at LXer:
As part of your overall hardening, and suite of security software you have installed, an IDS and/or IPS should not be left out. This is also a requirement for PCI Compliance. And IDS/IPS is very important for a number of reasons, first because when you are hacked, typically some sort of activity preceeded the hack, such as a port scan, which and IDS could detect, and an IPS could block. In addition the logs from your IDS/IPS can serve as part of your audit trail when investigating a security breach.
Read More...