52 lines
3.5 KiB
HTML
52 lines
3.5 KiB
HTML
|
<?xml version="1.0" encoding="UTF-8"?>
|
||
|
<!DOCTYPE html
|
||
|
PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
|
||
|
<html lang="en-us" xml:lang="en-us">
|
||
|
<head>
|
||
|
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
|
||
|
<meta name="security" content="public" />
|
||
|
<meta name="Robots" content="index,follow" />
|
||
|
<meta http-equiv="PICS-Label" content='(PICS-1.1 "http://www.icra.org/ratingsv02.html" l gen true r (cz 1 lz 1 nz 1 oz 1 vz 1) "http://www.rsac.org/ratingsv01.html" l gen true r (n 0 s 0 v 0 l 0) "http://www.classify.org/safesurf/" l gen true r (SS~~000 1))' />
|
||
|
<meta name="DC.Type" content="task" />
|
||
|
<meta name="DC.Title" content="Manage the intrusion detection policy file" />
|
||
|
<meta name="abstract" content="You can configure an intrusion detection program to send e-mail to a system administrator to alert them to suspicious events and provide suggestions as to what action to take." />
|
||
|
<meta name="description" content="You can configure an intrusion detection program to send e-mail to a system administrator to alert them to suspicious events and provide suggestions as to what action to take." />
|
||
|
<meta name="DC.Relation" scheme="URI" content="rzaubkickoff.htm" />
|
||
|
<meta name="copyright" content="(C) Copyright IBM Corporation 2006" />
|
||
|
<meta name="DC.Rights.Owner" content="(C) Copyright IBM Corporation 2006" />
|
||
|
<meta name="DC.Format" content="XHTML" />
|
||
|
<meta name="DC.Identifier" content="rzaubmanage" />
|
||
|
<meta name="DC.Language" content="en-us" />
|
||
|
<!-- All rights reserved. Licensed Materials Property of IBM -->
|
||
|
<!-- US Government Users Restricted Rights -->
|
||
|
<!-- Use, duplication or disclosure restricted by -->
|
||
|
<!-- GSA ADP Schedule Contract with IBM Corp. -->
|
||
|
<link rel="stylesheet" type="text/css" href="./ibmdita.css" />
|
||
|
<link rel="stylesheet" type="text/css" href="./ic.css" />
|
||
|
<title>Manage the intrusion detection policy file</title>
|
||
|
</head>
|
||
|
<body id="rzaubmanage"><a name="rzaubmanage"><!-- --></a>
|
||
|
<!-- Java sync-link --><script language="Javascript" src="../rzahg/synch.js" type="text/javascript"></script>
|
||
|
<h1 class="topictitle1">Manage the intrusion detection policy file</h1>
|
||
|
<div><p>You can configure an intrusion detection program to send e-mail
|
||
|
to a system administrator to alert them to suspicious events and provide suggestions
|
||
|
as to what action to take. </p>
|
||
|
<div class="section">You also can write a program to analyze the statistics
|
||
|
for certain patterns. For example, the statistics might reveal that suspicious
|
||
|
events are occurring during off-hours. The statistics might show that there
|
||
|
were attempted attacks on the system. The statistics also might show that
|
||
|
the network was misconfigured or not working correctly. <p>An intrusion detection
|
||
|
program should take suspicious events into account as well as network problems
|
||
|
that occur for other reasons such as hardware or configuration problems. For
|
||
|
example, ICMP redirect messages might indicate that a router is not fully
|
||
|
configured yet. Sometimes routers are slow to figure out which router in a
|
||
|
network is the best route to a destination.</p>
|
||
|
</div>
|
||
|
</div>
|
||
|
<div>
|
||
|
<div class="familylinks">
|
||
|
<div class="parentlink"><strong>Parent topic:</strong> <a href="rzaubkickoff.htm" title="Intrusion detection involves gathering information about unauthorized access attempts and attacks coming in over the TCP/IP network. Security administrators can analyze the auditing records that intrusion detection provides to secure the iSeries network from these types of attacks.">Intrusion detection</a></div>
|
||
|
</div>
|
||
|
</div>
|
||
|
</body>
|
||
|
</html>
|