Host Intrusion Detection System Administrator's Guide Release 3.1
Templates and Alerts
Modification of files/directories Template
Appendix A
151
Properties A brief description about the configurable properties are enlisted below:
• Property: pathnames_to_watch
Pathnames of files to be monitored for modification.
• Property: pathnames_to_not_watch
Pathnames of files that can be safely ignored for modification, regardless of which
program modifies them.
• Properties: pathnames_X, programs_X
Use these properties to filter out alerts generated when a particular program
modifies a particular file. See “Type II: Path Names/Programs Pairs” on page 132 for
a detailed description of these property pairs.
Alerts generated
by this template
See “File Being Modified” on page 152 for the alerts generated by this template.
programs_X II <empty>
Table A-9 File/Directories Template Properties (Continued)
Name Type Default Value