Manualshelf

HP-UX Host Intrusion Detection System Version 4.1 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX Host Intrusion Detection System Software
11121314151617181920
Document Organization
The HP-UX HIDS System Administrator's Guide is organized as follows:
Chapter 1 Introduction: Introduces HP-UX HIDS and provides information
about its role in enhancing host-level security within a network.
Chapter 2 Configuring HP-UX HIDS: Describes how to configure HP-UX HIDS
System Manager and Agent software.
Chapter 3 Getting Started with HP-UX HIDS: Provides information about the
procedures you must follow to get the System Manager and agents
up and running on the administrative and monitored systems.
Chapter 4 System Manager Screen: Describes the tasks you can perform using
the HP-UX HIDS System Manager screen.
Chapter 5 Schedule Manager Screen: Describes how to configure surveillance
schedules, surveillance groups, and detection templates using the
HP-UX HIDS Schedule Manager screen.
Chapter 6 Host Manager Screen: Describes how to define hosts to be monitored
using the HP-UX HIDS Host Manager screen.
Chapter 7 Network Node Screen: Describes the tasks you can perform using
the HP-UX HIDS Network Node screen.
Chapter 8 Preferences Screen: Describes the operational and display settings
that you can set on the Preferences screen
Appendix A Templates and Alerts: Describes the detection templates that constitute
surveillance groups. This appendix also describes the alerts that are
passed to the System Manager and to the response programs by the
HIDS agent.
Appendix B Automated Response for Alerts: Describes how to use response
programs to process alerts automatically according to your installation
policy. It includes a sample C program, several sample response
scripts, and information about a prepackaged response program that
communicates with HP OpenView VantagePoint Operations.
Appendix C Tuning Schedules and Generating Alert Reports: Provides
information and instructions for using the idsadmin command to
tune schedules and generate alert reports.
Appendix D The Agent Configuration File: Describes the user-configurable options
that can be modified in the HP-UX HIDS agent configuration file,
which is located in /etc/opt/ids/ids.cf.
Appendix E The Surveillance Schedule Text File: Describes the surveillance
schedule in text format for those administrators who want to edit
surveillance schedules using their preferred editor, instead of using
the GUI Schedule Manager.
Appendix F Error Messages: Describes errors and messages that may be generated
by the Agent and System Manager programs.
18 About This Document