HP-UX Host Intrusion Detection System Version 4.2 Administration Guide

ManualsBrandsHP ManualsSoftwareHP-UX Host Intrusion Detection System Software

Some Template Configuration Guidelines......................................................................................69

Setting Surveillance Schedule Timetables............................................................................................70

Specifying When a Schedule Will Run............................................................................................71

Canceling Changes..........................................................................................................................72

Saving a Surveillance Schedule.......................................................................................................72

Configuring Alert Aggregation............................................................................................................72

Guidelines for Configuring Alert Aggregation ..............................................................................74

Configuring Monitor Failed Attempts..................................................................................................75

Configuring Duplicate Alert Suppression............................................................................................76

Duplicate Alert Suppression Options.............................................................................................77

Viewing Surveillance Schedule Details................................................................................................78

Viewing the Source of a Surveillance Schedule...............................................................................78

Refreshing the Details Display........................................................................................................79

Clearing the Details Display............................................................................................................79

Saving the Details Display...............................................................................................................79

Predefined Surveillance Schedules and Groups...................................................................................80

6 Using the Host Manager Screen................................................................................83

Managing Hosts....................................................................................................................................83

Opening the Host Manager Screen.................................................................................................83

Closing the Host Manager Screen...................................................................................................84

Adding New Hosts...............................................................................................................................84

Adding a New Host Manually........................................................................................................84

Adding New Hosts from /etc/hosts..........................................................................................87

Adding New Hosts from a File.......................................................................................................87

Rules for Host Lists Files.................................................................................................................88

Modifying a Host..................................................................................................................................88

Deleting a Host.....................................................................................................................................89

Enabling and Disabling Hosts..............................................................................................................89

Managing a Tag.....................................................................................................................................89

Maintaining Host Files..........................................................................................................................91

Saving the Host List in the Current File..........................................................................................91

Saving the Host List in a Different File...........................................................................................91

Using an Alternate Host List File....................................................................................................92

Using Multiple Host Files................................................................................................................93

7 Using the Network Node Screen...............................................................................95

Network Node Screen...........................................................................................................................95

Opening a Network Node Screen....................................................................................................95

Closing a Network Node Screen.....................................................................................................95

Alerts Tab..............................................................................................................................................96

HP-UX HIDS Alerts.........................................................................................................................96

Errors Tab .............................................................................................................................................97

HP-UX HIDS Errors.........................................................................................................................97

General Operations...............................................................................................................................97

Sorting Entries.................................................................................................................................98

Selecting Entries...............................................................................................................................98

Selecting with the Mouse...........................................................................................................98

Simple Version......................................................................................................................98

Detailed Version....................................................................................................................98

Searching for the Next Unseen Entry..............................................................................................98

Searching for a String......................................................................................................................99

Deleting an Entry.............................................................................................................................99

Table of Contents 5