- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Harden Linux, HPUX and Solaris servers
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-26-2008 08:14 AM
тАО07-26-2008 08:14 AM
Harden Linux, HPUX and Solaris servers
Could you help me in hardening Linux, HPUX and Solaris servers starting from scratch.May be some tips or some docs. should be of good help to me.
Thank you.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-26-2008 08:22 AM
тАО07-26-2008 08:22 AM
Re: Harden Linux, HPUX and Solaris servers
Bastille !
In recent HP-UX releases, this get be setup to run during installation.
http://h20392.www2.hp.com/portal/swdepot/displayProductInfo.do?productNumber=B6849AA
Follow the links in the product overview for more information on HP-UX systems.
See also:
http://sourceforge.net/projects/bastille-linux/
http://bastille-linux.sourceforge.net/
Regards!
...JRF...
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-26-2008 08:33 AM
тАО07-26-2008 08:33 AM
Re: Harden Linux, HPUX and Solaris servers
As I understand from the docs... to harden a HP-UX Box...
I have to install the HP-UX Bastille from the below web-site.
http://h20392.www2.hp.com/portal/swdepot/displayProductInfo.do?productNumber=B6849AA
After installing this tool the server is said to be hardened.
JRS... plz let me know if my understanding is correct else plz help me understand it better.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-26-2008 08:40 AM
тАО07-26-2008 08:40 AM
Re: Harden Linux, HPUX and Solaris servers
PAM, SELinux, TCP Wrapper, IPTABLES is the best way to hardenning in Linux.
In Solaris you can use bastille also.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-26-2008 08:52 AM
тАО07-26-2008 08:52 AM
Re: Harden Linux, HPUX and Solaris servers
> After installing this tool the server is said to be hardened.
No. You need to read the documentation I suggested including the links in the HP-UX product spec-sheet.
For example, if you are cold-installing HP-UX 11.23 or later, Bastille is included by default:
http://docs.hp.com/en/5992-1978/ch03s05.html#babhdgia
Bastille can be run to first produce a report of suggested actions. Based on *your* specific needs (including adjustments your users may need to make) you then decide what to harden or lockout. At that point, you run Bastille to actually perform the configuration changes. You need to understand what you want to achieve, why and how is impacts your running environment.
Regards!
...JRF...
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-26-2008 08:53 AM
тАО07-26-2008 08:53 AM
Re: Harden Linux, HPUX and Solaris servers
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-26-2008 09:09 AM
тАО07-26-2008 09:09 AM
Re: Harden Linux, HPUX and Solaris servers
thanks for the info..
what is ment by "lockdown of a system".
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-26-2008 09:32 AM
тАО07-26-2008 09:32 AM
Re: Harden Linux, HPUX and Solaris servers
> what is ment by "lockdown of a system".
"Lockdown" is the action or process of prventing use or intrusion.
Some of the tables in one of the links I offered will help you understand:
http://docs.hp.com/en/5992-1978/ch03s05.html#babhdgia
Please don't forget to provide feedback when you are satisfied with the help you have received:
http://forums11.itrc.hp.com/service/forums/helptips.do?#33
Regards!
...JRF...
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-26-2008 10:11 AM
тАО07-26-2008 10:11 AM
Re: Harden Linux, HPUX and Solaris servers
Hardning a HP-UX OS
0.Login as root
1.Install HP-UX Bastille with Ignite-UX from the OE cd.
2.First time use it interactivelly (Bastille -X) to build system security config.
3.Answer the Questions which explains a security issue as desired by myself for the perticular Server.
4.Select security levels(Sec10Host;Sec20MngDMZ or Sec30DMZ).
5.Save the configuration and apply changes.
Plz correct me if I am wrong either in the procedure or the sequence of steps if they are incorrect.
Monday I will be Hardning my first Server.. So just wanted to be on the safe side that I have understood the whole thing.
Also I need to know the how to do the same on a SUN & a LinuX Box.Plz help me.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-26-2008 02:19 PM
тАО07-26-2008 02:19 PM
Re: Harden Linux, HPUX and Solaris servers
http://www.ibm.com/developerworks/linux/library/l-seclnx3/
There's plenty of linux docs out there, just use google.