
McAfee® Host Intrusion Prevention 6.1 Product Guide | Host Intrusion Prevention Client |
| Solaris client |
9
Solaris client
The Host Intrusion Prevention 6.1 Solaris client identifies and prevents potentially harmful attempts to compromise a Solaris server’s files and applications. It protects the server’s operating system along with Apache and Sun web servers, with an emphasis on preventing buffer overflow attacks.
Policy enforcement with the Solaris client
Not all policies that protect a Windows client are available for the Solaris client. In brief, Host Intrusion Prevention protects the host server from harmful attacks but does not offer firewall protection. The valid policies are listed here.
With this policy... | These options are available... | |
|
|
|
HIP 6.1 GENERAL: |
|
|
Client UI | None except admin or | |
| the troubleshooting tool. | |
|
| |
Trusted Networks | None | |
Trusted Applications | Only Mark as trusted for IPS and New Process Name to add | |
| trusted applications. | |
|
|
|
HIP 6.1 IPS: |
|
|
IPS Options | | Enable HIPS |
| | Enable Adaptive Mode |
| Retain existing Client Rules | |
|
|
|
IPS Protection | All |
|
IPS Rules | | Exception Rules |
| Signatures (default and custom HIPS rules only) | |
| Note: NIPS signatures and Application Protection Rules are | |
| not available. | |
|
|
|
IPS Events | All |
|
IPS Client Rules | All |
|
|
|
|
Search IPS Exception Rules | All |
|
HIP 6.1 FIREWALL | None | |
|
| |
HIP 6.1 APPLICATION BLOCKING | None | |
|
|
|
Troubleshooting
After the Solaris client is installed and started, it protects its host. However, you may need to troubleshoot installation or operation issues.
Client installation issues
If a problem was caused while installing or uninstalling the client, there are several things to investigate. These can include ensuring that all required files were installed in the correct directory, uninstalling and then reinstalling the client, and checking process logs.
153