Hi all!
Can someone tell me what "Audit" refers to in SEP attack signatures? Specifically i am looking at ICMP redirect attacks and i see that there is a signature for this (see link), however its labelled as Audit.
http://www.symantec.com/security_response/attacksignatures/detail.jsp?asid=20017
Does this mean that it is logged only and not blocked? or that its blocked under a heading of Audit?
Symantec updated their categories for attack sig's (see link) but it doesn't seem that Audit is covered.
http://www.symantec.com/business/support/index?page=content&id=TECH152794
any help much appreciated.