Manualshelf

HP-UX Host Intrusion Detection System Version 4.2 Release Notes

ManualsBrandsHP ManualsSoftwareHP-UX Host Intrusion Detection System Software
21222324252627282930
Will Installing HP-UX HIDS Version 4.2 Reboot My Agent System?
The installation scripts for HP-UX HIDS try to avoid unnecessary system reboots. However, in
some circumstances, a system reboot might be required. Those circumstances are (in order of
priority):
1. If you choose the Reinstall Filesets option in the graphical interface to swinstall,
all HIDS filesets will be installed, and a system reboot will occur.
2. If you pass the -x reinstall=true option to the command-line invocation of swinstall,
all HIDS filesets will be installed, and a system reboot will occur.
3. If you are installing HP-UX HIDS version 4.2 on a system for the first time (a fresh install),
a reboot will occur.
Table 2-5 Reboot Matrix
Update to Version 4.2Update from:
RebootNot installed
No RebootVersion 4.1
No rebootVersion 4.0
No RebootVersion 3.1
Postinstallation
The HP-UX startup in progress list should display OK for the Starting HIDS agent entry.
When an agent system reboots after a cold installation, the HP-UX startup in progress list
should display N/A for the Starting HIDS agent entry. That is, system boot will not
automatically start idsagent until after the secure communication keys and certificates
have been installed on the agent system. See “Configuration” (page 29).
On each agent system, after the system has rebooted, run the IDS_checkInstall script.
# /opt/ids/bin/IDS_checkInstall
This script checks that the Intrusion Detection Data Source (idds) kernel driver is configured
and enabled. It also checks that all the necessary and superseding patches (or patches that
supersede them) have been installed although it does not verify if a patch has a superseding
patch.
Configuration
After you have installed or updated your HP-UX HIDS software, you need to complete the
configuration with the required and optional steps that are described in Chapter 2 of Host Intrusion
Detection System Administrator’s Guide, Software Release 4.2. The following is an annotated list of
some of the sections in chapter 2 of that guide.
Required
Before you can run HP-UX HIDS, you must complete the configuration step described in the
section "Setting Up the HP-UX HIDS Secure Communications” in the Host Intrusion Detection
System Administrators Guide.
You may need to create keys and certificates to ensure secure communication between the
administration system and the agent systems.
If you are upgrading from HIDS version 2.x or 3.x, your old keys and certificates are preserved.
Postinstallation 29