Host Intrusion Detection System Administrator's Guide Release 3.1
Overview
What HP-UX HIDS does not do
Chapter 1
10
What HP-UX HIDS does not do
Following are the limitations or HP-UX HIDS cannot solve all security -related
problems:
HP-UX HIDS is not a replacement for such comprehensive security policies and
procedures. You must define and implement such security policies and procedures and
configure HP-UX HIDS to enforce them. A lack of comprehensive policies, procedures,
and configuration can result in attacks going undetected. HP-UX HIDS may also report
false alerts and your system may remain vulnerable.
HP-UX HIDS does not prevent the onset of attacks. If your system is vulnerable to
attacks, those vulnerabilities will remain even after HP-UX HIDS is installed.
HP-UX HIDS does not find static security flaws on a system. HP-UX HIDS does not
prevent the onset of attacks. It only reports the possibility of an attack or an intrusion.
For example, if the password file contained an illegitimate account before HP-UX HIDS
was installed, that illegitimate account remains a vulnerability even after HP-UX HIDS
is installed and operational. Furthermore, HP-UX HIDS cannot authenticate users of a
valid account. For example, if users share passwords, HP-UX HIDS cannot ascertain the
identity of the user gaining access to the system.