topic Re: Security in Operating System - HP-UX

Security

Fabian Briseño — Mon, 09 Oct 2006 07:32:36 GMT

Hi guys.
I have the following questions, hope you can point me in the rigth direction.

I have been tasked with heading security for our HP unix servers
we use 11 and 11.i, I have 4 years of experience using HP Unix
and currently am a jr. unix Admin.

can you recommend any good reading material on security, be it online
or a good book ?

currently Im reading Unix system Security by RIK FARROW, granted it is
an old book but I think it provides some still useful security guidelines.

On a personal note I think security is a hot ticket today and for the Foreseeable Future.

I would like to hear your opinions on this matter, as always thanks for your comments and your time.

Re: Security

Peter Godron — Mon, 09 Oct 2006 07:45:26 GMT

Fabian,
you could start with thread:
http://forums1.itrc.hp.com/service/forums/questionanswer.do?threadId=999091 which has some document links.

Or you can go on a course:
http://forums1.itrc.hp.com/service/forums/bizsupport/questionanswer.do?threadId=986809

Finally you can look at products such as bastille and tripwire etc.

But most imporatant, don't overlook problems, such as sharing passwords.

Re: Security

Pete Randall — Mon, 09 Oct 2006 07:47:28 GMT

Chris Wong has a book on "HP-UX 11i Security":

http://www.phptr.com/bookstore/product.asp?isbn=0130330620&rl=1

There is also a white paper available:

http://www.docs.hp.com/en/5990-7245/5990-7245.pdf

Pete

Re: Security

Peter Godron — Mon, 09 Oct 2006 07:48:47 GMT

Fabian,
also found:
http://forums1.itrc.hp.com/service/forums/questionanswer.do?threadId=217027

which has lots of links to documents.

Re: Security

Pete Randall — Mon, 09 Oct 2006 08:04:56 GMT

Hmmmm, the link to the white paper doesn't seem to work. Re-try:

http://www.docs.hp.com/en/5990-7245/5990-7245.pdf

If that doesn't work, try cutting and pasting it into your browser - that works for me.

Pete

Re: Security

Robert Fritz — Tue, 10 Oct 2006 14:52:50 GMT

Hi there,

You may also want to install and run Bastille and Security patch check... The latter will automatically analyze your security-bulletin currency, and the former serves is a security wizard with ~80 items it can help you lock down. They're good basic starts, and Bastille is quite educational. That said, a book will always have "most stuff," but these tools can get you running quickly:

http://h20293.www2.hp.com/portal/swdepot/displayProductInfo.do?productNumber=B6849AA

http://h20293.www2.hp.com/portal/swdepot/displayProductInfo.do?productNumber=B6834AA

Re: Security

john D_3 — Tue, 10 Oct 2006 15:34:00 GMT

Hi,

Pls take a look into the following site:

http://www.blacksheepnetworks.com/security/resources/hp-ux11.html

Thanks
Mehmood

Re: Security

Peter Godron — Wed, 11 Oct 2006 03:50:05 GMT

Fabian,
have you got enough info to solve your problem? If so, can you please provide some feedback, reward the answers and close the thread.

Re: Security

Maxim Yakimenko — Wed, 11 Oct 2006 06:18:03 GMT

And remember - Unix security is a Process, but not a Product. Tools like bastile and tripware can help you to protect your systems but can not completely do the all security workaround insteed of you. In order to success you must have understanding of what is working on your system, how it is working and for what - I mean you should have additional knoweledge about specific use of your systems.

Re: Security

Fabian Briseño — Wed, 11 Oct 2006 23:06:48 GMT

Hello again guys.

Thakns for all of your replys, i have enough information for now, security is an evolving area. ill be busy for the following days reading the material all of you sent.

thanks again and hope to see you soon and bug you with some more questions, ;D.