You can protect your information assets and ensure uniform security by applying UNIX agent rule sets. By working in conjunction with the event detection and alerting daemon, rule sets offer real-time event detection, alerting, and response. The default rule set provides a wealth of UNIX knowledge and an excellent starting point from which to build custom rule sets.
UNIX Agent Manager provides a Rule wizard that guides you through creating rules to monitor and react to a number of common conditions, including the following:
Terminating daemons
Running specific sensitive commands
Running sensitive commands in a context other than root
Creating, modifying, or deleting of specific files
You can deploy the rule sets that you create to any or all of the UNIX computers in your enterprise.