Contact Us Contact Us

HP-UX Host Intrusion Detection System (HIDS)

  Software Depot
Electronic download
Frequently asked questions
Product details and specifications

HP-UX Host Intrusion Detection System (HIDS) is a host-based security software that enables administrators to proactively monitor, detect, and respond to both known and unknown attacks that originate from the network or on the host.

HP-UX HIDS includes a number of patterns called detection templates that guard host systems against exploitation of underlying system vulnerabilities. HIDS includes preconfigured detection templates that facilitate product deployment. This software identifies patterns that suggest security breaches or misuse by examining information about system activity from a variety of data sources. These activities can include a hacker attempting to break into or disrupt the system, subversive 'insider' activities, or someone trying to spread a virus.

HP-UX HIDS version 4.8

HP-UX HIDS version 4.8 is updated to provide the fix for POODLE vulnerability. For more information, see HP-UX Host Intrusion Detection System Version 4.8 Release Notes.

HP-UX HIDS version 4.7

HP-UX HIDS version 4.7 supports Java 6.0 on HP-UX 11i v3. For more information, see HP-UX Host Intrusion Detection System Version 4.7 Release Notes.

This version supports the monitoring HP-UX Containers(HP-UX SRP) feature provided on HP-UX HIDS version 4.4. It also supports all the features and defect fixes provided on HP-UX HIDS version 4.3 and earlier.

HP-UX HIDS version 4.3

HP-UX HIDS version 4.3 includes only defect fixes. See the HP-UX HIDS version 4.3 release notes for details.

This version supports all the features provided on HP-UX HIDS version 4.2, which are listed below:

  • A log file monitoring feature that enables administrators to receive alerts when log entries that match regular expression string patterns are detected in plain text log files (for example, syslog). Administrators specify the path names of the log files to monitor and the regular expression string patterns to monitor for each log file.
  • A critical file monitoring feature that enables administrators to receive alerts when there are failed attempts to create, delete, or modify critical files. Previous HIDS releases only monitor for successful attempts to modify files. With this feature enabled, both successful and failed attempts are detected. As with successful attempts, failed attempts to modify critical files can be indicative of an intrusion or of system misuse.
  • IPv6 support that allows HIDS to function in a pure IPv6 network as well as a mixed IPv6/IPv4 network.
  • Numeric user name support for specifying user name template property values.

HP-UX HIDS version 4.1

HP-UX HIDS version 4.1 is the last release supported on HP-UX 11i v1 and includes the following features and enhancements:

  • An alert volume reduction feature that proactively suppresses duplicate alerts from being generated, logged, and reported to the HIDS administrator console. Using this feature, administrators can manage HIDS alerts easily by focusing their attention on fewer and more significant alerts.
  • A reporting feature that enables the generation of customized and consolidated alert reports that are easy to view and print. Reports can be generated in HTML, text, and raw formats.
  • A tuning tool that can greatly reduce the time and effort to deploy and maintain surveillance schedules by:
    • Eliminating the time consuming and error prone process of manually generating filtering rules.
    • Facilitating the review of alerts from multiple agents running the same schedule by presenting an alert report that consolidates duplicate alerts and groups alerts triggered by the same program.
    • Performing automatic schedule updates and deployments.
  • This tool effectively automates the process of identifying and filtering file-related alerts that the HIDS administrator deems safe to ignore, that is, alerts generated because of normal system activity. The tool can be used to perform the following tasks:
    • Customize a predefined schedule to filter out alerts generated as part of normal system activity during the initial HIDS deployment.
    • Fine tune an existing schedule if new alerts that are deemed safe to ignore are generated after deployment.
  • The Surveillance Schedules and Surveillance Groups managed by the HIDS administrative GUI and CLUI are stored in text format only, allowing users to also edit schedules and groups using their preferred editor.
  • The Creation and Modification of Setuid file template now also monitors the creation and modification of privileged setgid files.

Availability of HP-UX HIDS on HP-UX Operating Systems

The following table lists the availability of HP-UX HIDS on HP-UX 11i operating systems:

Version of HP-UX HIDS Depot

Contents Summary

Operating System

HP-UX HIDS version 4.8 32 bit IA/PA binaries and libraries HP-UX 11i v3

HP-UX HIDS version 4.7

32 bit IA/PA binaries and libraries

HP-UX 11i v3

HP-UX HIDS version 4.3

32 bit IA/PA binaries and libraries

HP-UX 11i v2

HP-UX HIDS version 4.1

32 bit PA binaries and libraries

HP-UX 11i v1


Additional product information
Product #: HPUX-HIDS     
Additional info
Version: HIDS v4.8
Software specification: HP-UX 11i v3 (HPUX-HIDS_F.04.08.00_HP-UX_B.11.31_IA_PA.depot)
HP-UX 11i v3(HPUX-HIDS_F.04.07.00_HP-UX_B.11.31_IA_PA.depot )
HP-UX 11i v2(HPUX-HIDS_E.04.03.04_HP-UX_B.11.23_IA_PA.depot)
HP-UX 11i v1(HPUX-HIDS_B.04.01.24_HP-UX_B.11.11_32+64.depot)