HP-UX Host Intrusion Detection System Version 4.7 Release Notes HP-UX 11i v3 (766145-001, March 2014)
Contents
HP secure development lifecycle......................................................................5
1 Announcement...........................................................................................6
What is HP-UX HIDS.................................................................................................................6
Compatibility with previous versions............................................................................................6
Compatibility with Other Products...............................................................................................6
Localization.............................................................................................................................7
Benefits...................................................................................................................................7
Documentation.........................................................................................................................8
Manuals.............................................................................................................................8
Manpages..........................................................................................................................8
HP OpenView SMART Plug-In................................................................................................8
HP Support Center...............................................................................................................8
Support Model....................................................................................................................8
New and Changed Features......................................................................................................9
Known Problems, Limitations, and Fixes ......................................................................................9
Clarifications.......................................................................................................................9
Perform Updates Instead of Cold Reinstalls..........................................................................9
Do not Change Permissions..............................................................................................9
Known Problems and Limitations............................................................................................9
The GUI Schedule Manager Does not Validate Modifications to pathnames_X/programs_X
Template Properties.........................................................................................................9
Diagnosing the Problem............................................................................................10
Incorrectly Formatted raw Reports Sent as an Email............................................................10
Special Characters not Supported When Specifying Filters Using the tune Command.............10
The idsadmin Command Does not Parse Schedules Whose Property Lines Exceed 65535
Characters...................................................................................................................10
Limitation when Using idsadmin in Interactive Mode..........................................................10
The idsadmin Tool Cannot Monitor more than one Agent at a Time.....................................11
Display of Schedules Created Using Earlier Versions of HIDS..............................................11
The Migrator Tool does not Update suppression_targets_to_ignore properly..........................11
Limitation While Using the ids.cf File for Configuring Duplicate Alert Suppression..................11
Unexpected Behavior by idsagent when report, resync, or tune Command is Executed...........11
SSH does not Perform a Clean Exit after idsagent is Started................................................11
Agents and Kernel Parameters.........................................................................................12
Dropped Kernel Audit Records........................................................................................12
Time Units Cannot be Specified for Template Properties in Schedule Manager......................12
Schedules that Contain Username Template Values Cannot be run by Version 3.x Agents.......12
Error Log File Rotation....................................................................................................12
The swverify command reports error after removing the IDS Agent or the IDS Admin Sub-product
from a server that has HIDS bundle installed.....................................................................12
2 Installation...............................................................................................13
Introduction............................................................................................................................13
Installation Summary...............................................................................................................13
Hardware and Software Requirements.......................................................................................14
Administration and Agent Systems........................................................................................14
Administration System.........................................................................................................14
Agent Systems...................................................................................................................14
Dual System......................................................................................................................14
Migrating Schedules from Older Versions of HIDS.......................................................................15
Preinstallation.........................................................................................................................15
Contents 3