|
|
HP-UX Reference > Eenable_idds(5)Tunable Kernel ParametersHP-UX 11i Version 2: December 2007 Update |
|
NAMEenable_idds — enable intrusion detection data source DESCRIPTIONIf enable_idds is set to 1, then the HP-UX Host Intrusion Detection System (HP-UX HIDS) can enable the collection of kernel data for intrusion detection. This also causes additional things to be tracked by the kernel, resulting in a small degradation in performance (and increase in kernel memory usage), even if HP-UX HIDS is not in use. When Should the Tunable Be Turned On?This tunable should be turned on if HP-UX HIDS is installed. The installation will automatically turn on enable_idds. What Are the Side Effects of Turning the Tunable On?The name of the current working directory (and root directory) of every process is tracked, resulting in a change in memory usage and performance of the system. When Should the Tunable Be Turned Off?If HP-UX HIDS is not being used enable_idds should be turned off. WARNINGSAll HP-UX kernel tunable parameters are release-specific. This parameter may be removed or have its meaning changed in future releases of HP-UX. Installation of optional kernel software, from HP or other vendors, may cause changes to tunable parameter values. After installation, some tunable parameters may no longer be at the default or recommended values. For information about the effects of installation on tunable values, consult the documentation for the kernel software being installed. For information about optional kernel software that was factory installed on your system, see HP-UX Release Notes at http://docs.hp.com. |
|