What would be considered Best Practice to determine which IPS protections you can safely
disable for your environment?
A.
You should not disable any IPS protections.
B.
You should set all protections to “Detect”.
C.
Work through turning on each protection to see which signatures get alerts.
D.
You should use vulnerability tools to perform an assessment of your environment.
can anyone verify if this is correct?