Manualshelf

HP-UX Host Intrusion Detection System Release 4.1 Release Notes for HP-UX 11i v1 | HP-UX 11i v2

ManualsBrandsHP ManualsSoftwareHP-UX Host Intrusion Detection System Software
11121314151617181920
1 Announcement
This document describes major new features, enhancements, fixes, limitations, and
known issues for Host Intrusion Detection System (HIDS) Release 4.1.
What is HP-UX HIDS
HP-UX HIDS is a host-based HP-UX security product for HP systems running HP-UX
11i v1 or HP-UX 11i v2. HP-UX HIDS enables security administrators to proactively
monitor, detect, and respond to attacks targeted at specific hosts. Many types of attacks
can bypass network-based detection systems. HP-UX HIDS monitors these bypassed
attacks and complements the existing network-based security mechanisms, bolstering
enterprise security.
HP-UX HIDS seeks patterns that suggests security breaches or misuse, by examining
information about system activity from a variety of data sources. It detects illicit activities
that include attempting to break into or disrupt the system, modifying system files and
directories, or attempting to spread a virus. When HP-UX HIDS detects an intrusion
attempt, it issues an alert to the administrative interface, where users can immediately
investigate the situation, and take necessary action against the intrusion. In addition,
users can customize a local response to an alert, as described in Appendix B, Response
Programs in the Host Intrusion Detection System Administrator’s Guide.
HP-UX HIDS is particularly useful for enterprise environments in which centralized
management tools control networks of heterogeneous systems. These environments
include Web servers, transaction processors, application servers, and database systems.
Compatibility with Previous Releases
HP-UX HIDS Release 4.1 software is backward compatible with HIDS v4.0, HIDS v3.1,
and HIDS v3.0 (collectively referred to as 3.x). However, schedules created using HIDS
v3.x and HIDS v4.0 must be migrated to HIDS v4.1. For more information about
migration, see “Migrating Schedules from Older Versions of HIDS” (page 32)
HP recommends that users upgrade all systems to HIDS Release 4.1.
NOTE: HP-UX HIDS 4.1 is not backward compatible with HIDS v1.0 and HIDS v2.0,
HIDS v2.1, and HIDS v2.2 (collectively referred to as 2.x). HIDS v1.0 and HIDS v2.x
are obsolete.
Compatibility with Other Products
HP-UX HIDS is not compatible with some HP software products. Table 1-1 lists the
products that are supported. Do not run HP-UX HIDS on systems that are running
unsupported products (or vice versa).
What is HP-UX HIDS 13