HP-UX Host Intrusion Detection System Version 4.7 Administrator Guide HP-UX 11i v3 (766144-001, March 2014)
Alerts and errors are saved at the same time on agent hosts. Alerts go into a file named
filesetname_alerts.log. Errors go into a file named filesetname_errors.log.
filesetname is the name you assign.
NOTE: The Network Node screen title bar indicates how you obtained the data on the screen.
If it consists of Network Node - hostname, where hostname is the name of the monitored host,
the data is got from the master log file for that host and you selected the Network Node screen
from the System Manager screen.
If it consists of Network Node - pathname, where pathname is the full path name of a file, the
data is acquired from a log file set that you selected with the File >Open menu item.
Saving the Current Log File Set
To save the current log file set into the log file set displayed in the window title bar, follow these
steps:
• On the Network Node screen, perform one of the following steps:
• Select the File > Save menu item.
• Press Ctrl+S.
The alert and error log files are saved in /var/opt/ids/gui/logs, overwriting files
filesetname_alert.log and filesetname_error.log.
Saving a New Log File Set
NOTE: You cannot use this method to save into the log file set of any host that has an entry
(monitored or not) in the host list on the Host Manager screen.
To save the current log file set into a file set with a different name, follow these steps:
1. On the Network Node screen, open the Save dialog box as shown in Figure 37 by performing
one of the following steps:
• Select the File > Save As menu item.
• Press Ctrl+A.
Figure 37 Save Dialog Box
2. Either select one of the existing file names (it does not matter whether you choose the alert or
error file) by clicking its name, or enter a log file set name in the File Name field. A log file
set name is a file name without the trailing _alert.log or _error.log. For example:
General Operations 91