HP-UX Host Intrusion Detection System Version 4.7 Administrator Guide HP-UX 11i v3 (766144-001, March 2014)
HP-UX HIDS Alerts
Your response to each alert depends on individual circumstances. Develop policies and procedures
for handling intrusions.
The templates used to generate alerts are described in Appendix A (page 102).
For detailed information on the alerts, see Appendix A (page 102).
You can create automated alert response programs that are executed automatically when an alert
is generated, and pass the information to an analysis system. For example, HP provides a package
that sends alerts to the HP OpenView Operations (OVO) program for evaluation and action. For
more information, see Appendix B (page 148).
Errors Tab
The Errors tab shown in Figure 35 displays errors that were reported by the HP-UX HIDS agent
program on one of the agent host systems while the System Manager was running. Errors are not
resynchronized.
On the Network Node screen, click the Errors tab.
Figure 35 Network Node Error Tab
Each error entry displays the date and time of the error, the error message, and other data. The
columns displayed depend on selections on the Preferences screen, which lists and describes all
the column names. For more information, see “Error Events Preferences” (page 96).
When you select an error, it is highlighted in light blue and marked as Seen. The panel below
the list of errors displays the formatted error message for the last selected error.
The operations you can perform on the Errors tab are described in “General Operations” (page 88).
HP-UX HIDS Errors
Error messages and troubleshooting tips are described in Appendix F (page 195).
Errors Tab 87