- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Re: Who can give me some advices about security of...
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-06-2005 03:43 AM
тАО06-06-2005 03:43 AM
Please give some advices.
Thanks.
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-06-2005 03:56 AM
тАО06-06-2005 03:56 AM
Re: Who can give me some advices about security of HP Server which is acting as a www server?
Hardening systems is a very broad topic that can't really be addressed adequately in a newsgroup response. If you're truly unfamiliar with UNIX security in general and HP security specifically, then I'd strongly suggest hiring a competant UNIX admin consultant with strong security skills for a two-three week project of hardening your system. There are *ALOT* of things that should be tightened on a standard HP install and that doesn't include all the environmental things that should be in place for a system on the Internet.
All that being said, there have been several links posted on ITRC on hardening HP systems. Searching for security related topics should give you a good starting point.
Doug
------
Senior UNIX Admin
O'Leary Computers Inc
linkedin: http://www.linkedin.com/dkoleary
Resume: http://www.olearycomputers.com/resume.html
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-20-2005 07:47 AM
тАО06-20-2005 07:47 AM
Re: Who can give me some advices about security of HP Server which is acting as a www server?
ports used by applications like tomcat or jdbc or others, make sure give the proper authorization on your firewall.
Make sure you have 2 NIC one internal and one external.
another suggestion is to have an ID(Intrusion Detection) server.
hope it helps
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-20-2005 08:39 AM
тАО06-20-2005 08:39 AM
Re: Who can give me some advices about security of HP Server which is acting as a www server?
Open Internet connections are so dangerous (to the health of your computer and data), I would not consider this without a knowledgeable consultant. HP-UX is much less vulnerable than other systems but you need to make a lot of changes.
Bill Hassell, sysadmin
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-20-2005 11:53 AM
тАО06-20-2005 11:53 AM
Re: Who can give me some advices about security of HP Server which is acting as a www server?
http://h20293.www2.hp.com/portal/swdepot/displayProductInfo.do?productNumber=B6849AA
Read up on ipfilter for sure...
Keep patches up 2 date as well as applications (Apache, Perl, etc)
Rgds...Geoff
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-22-2005 03:09 PM
тАО06-22-2005 03:09 PM
Re: Who can give me some advices about security of HP Server which is acting as a www server?
Thanks.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-22-2005 03:12 PM
тАО06-22-2005 03:12 PM
Solutionhttp://secinf.net/unix_security/Building_a_Bastion_Host_Using_HPUX_11.html
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-22-2005 03:28 PM
тАО06-22-2005 03:28 PM
Re: Who can give me some advices about security of HP Server which is acting as a www server?
First off get a list of open ports and identify which ones you require to be open:
# netstat -a | grep -i listen
# lsof -i | grep -i listen
lsof is a better as it is easier to identify which processes / daemons have the port open.
To close the port you need to stop the process running which has the port open and disable it from starting at boot time. Most likely it will be started by a script in /sbin/rc*.d. Either disable this script or set a flag in /etc/rc.config.d/*
For services started by inetd (eg ftp, telnet, echo etc) you disable the daemon in /etc/inetd.conf and then run:
# inetd -c
Cheers
Con
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-22-2005 06:26 PM
тАО06-22-2005 06:26 PM
Re: Who can give me some advices about security of HP Server which is acting as a www server?
Thanks.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-22-2005 06:42 PM
тАО06-22-2005 06:42 PM
Re: Who can give me some advices about security of HP Server which is acting as a www server?
Download lsof from:
http://hpux.connect.org.uk/hppd/hpux/Sysadmin/lsof-4.74/
Use swinstall to install.
Cheers
Con