Hi
I might be mistaken, but it does appear to be quite constant (all day).
The Omerka attack mentioned has only been logged twice and both logs came in quite early this morning.
Though I have only enabled IDS the last 3 days because the WiFi experience degraded suddenly about a week ago. One of the main reasons I enabled it was users were reporting that they can't connect in the one section of the building (3 APs that was covering that specific area - where of the one AP seemed to be giving alot of problems).
Haven't had reports of poor WiFi since I enabled it, but that just adds to my suspisions.