GreenLake Administration
- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- HIDS "idscor" process
Operating System - HP-UX
1855696
Members
6112
Online
104103
Solutions
Forums
Categories
Company
Local Language
back
Forums
Discussions
Knowledge Base
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Knowledge Base
Forums
Discussions
- Cloud Mentoring and Education
- Software - General
- HPE OneView
- HPE Ezmeral Software platform
- HPE OpsRamp
Knowledge Base
Discussions
Forums
Discussions
back
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Blogs
Information
Community
Resources
Community Language
Language
Forums
Blogs
Go to solution
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-04-2005 03:30 AM
05-04-2005 03:30 AM
Hi,
I am currently testing HIDS on our Production systems and there is a process called "idscor" that is at the very top of my "glance" process list.
Can someone tell me what "idscor" is and how I can lower it in the process list. Would "renice" be OK?
Thanks
Andrew Pollard
I am currently testing HIDS on our Production systems and there is a process called "idscor" that is at the very top of my "glance" process list.
Can someone tell me what "idscor" is and how I can lower it in the process list. Would "renice" be OK?
Thanks
Andrew Pollard
Solved! Go to Solution.
3 REPLIES 3
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-04-2005 03:42 AM
05-04-2005 03:42 AM
Solution
Check this Doc..
http://www1.itrc.hp.com/service/cki/docDisplay.do?docLocale=en_US&docId=200000076534457
-USA..
http://www1.itrc.hp.com/service/cki/docDisplay.do?docLocale=en_US&docId=200000076534457
-USA..
Good Luck..
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-05-2005 02:16 AM
05-05-2005 02:16 AM
Re: HIDS "idscor" process
Hi Uday,
Thanks for the info. I followed one suggestion in that document, and changed the value of "IDDS_MODE" to 3. The "idscor" process is still at the top of the process table, I guess I will need to upgrade to v3 when it is ready.
I am also getting the error:
KernelDSP: idskerndsp: Droping audit records due to heavy load.
Do you know if this is because of v2.2 and will go away after upgrading to v3?
Thanks
Andrew Pollard
Thanks for the info. I followed one suggestion in that document, and changed the value of "IDDS_MODE" to 3. The "idscor" process is still at the top of the process table, I guess I will need to upgrade to v3 when it is ready.
I am also getting the error:
KernelDSP: idskerndsp: Droping audit records due to heavy load.
Do you know if this is because of v2.2 and will go away after upgrading to v3?
Thanks
Andrew Pollard
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-05-2005 05:40 AM
05-05-2005 05:40 AM
Re: HIDS "idscor" process
Andrew -
The high CPU usage of idscor was addressed by HIDS v3.0, which was available last December. We have recently posted V3.1 on software.hp.com that fixes some V3.0 defects. You should see significant CPU usage improvement with V3.1.
The Race Condition template is still CPU intensive, so do not schedule this template initially. The Buffer Overflow template is no longer CPU intensive as it was in V2.2.
You can still get the "dropping audit records" message under heavy loads but it is less likely to happen with V3.1.
I encourage you to read the Admin Guide (AG) that describes the new syntax for specifying template properties and describes new filtering template properties (See appendix A). Also refer to the troubleshooting section in Appendix G and the Release Notes (RN) for V3.1. The RN and AG are both available on docs.hp.com.
Pierre
The high CPU usage of idscor was addressed by HIDS v3.0, which was available last December. We have recently posted V3.1 on software.hp.com that fixes some V3.0 defects. You should see significant CPU usage improvement with V3.1.
The Race Condition template is still CPU intensive, so do not schedule this template initially. The Buffer Overflow template is no longer CPU intensive as it was in V2.2.
You can still get the "dropping audit records" message under heavy loads but it is less likely to happen with V3.1.
I encourage you to read the Admin Guide (AG) that describes the new syntax for specifying template properties and describes new filtering template properties (See appendix A). Also refer to the troubleshooting section in Appendix G and the Release Notes (RN) for V3.1. The RN and AG are both available on docs.hp.com.
Pierre
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.
Company
Events and news
Customer resources
© Copyright 2026 Hewlett Packard Enterprise Development LP