I've recently installed AIP-SSM-20 in the ASA, I need to know the following info.
1. Is keeping the latest sig.def file (Sig.420) with default actions, will be sufficient for the protection?
2. If I change any one signature behavior, what will happen when Sensor is updated with new sig def file? The signature which is modified will present or it will be over written?
Thanks in adv.