https://community.hpe.com/t5/operating-system-hp-ux/class-c2-security-setting-on-password-aging/m-p/5184686#M732777 Also, of course, the orange book itself was retired in 2005, and replaced with the "Common Criteria" (ISO 15408, parts 1-3), which is freely available in PDF form from the ISO website.<BR /><BR />(This might explain why trusted mode is deprecated.) Thu, 02 Jul 2009 07:56:53 GMT Andrew C Fieldsend 2009-07-02T07:56:53Z https://community.hpe.com/t5/operating-system-hp-ux/class-c2-security-setting-on-password-aging/m-p/5184683#M732774 Hi,<BR />HP-UX trusted mode is compliant with DoD class C2 security.<BR />However, the Orange Book (<A href="http://www.dynamoo.com/orange/)" target="_blank">http://www.dynamoo.com/orange/)</A> does not mention the password aging should be how many days.<BR /><BR />Pls advise on where to check class C2 password aging should be how many days.<BR /><BR />Thanks &amp; regards<BR />Chin<BR />1-Jul-09 (Wed) @3:11pm Wed, 01 Jul 2009 06:11:01 GMT https://community.hpe.com/t5/operating-system-hp-ux/class-c2-security-setting-on-password-aging/m-p/5184683#M732774 PARK FOH CHIN 2009-07-01T06:11:01Z https://community.hpe.com/t5/operating-system-hp-ux/class-c2-security-setting-on-password-aging/m-p/5184684#M732775 Hi,<BR /><BR /><A href="http://docs.hp.com/en/B2355-90121/index.html" target="_blank">http://docs.hp.com/en/B2355-90121/index.html</A> Wed, 01 Jul 2009 06:24:14 GMT https://community.hpe.com/t5/operating-system-hp-ux/class-c2-security-setting-on-password-aging/m-p/5184684#M732775 Ganesan R 2009-07-01T06:24:14Z https://community.hpe.com/t5/operating-system-hp-ux/class-c2-security-setting-on-password-aging/m-p/5184685#M732776 Shalom,<BR /><BR />The document in the first answer definitely says how to do the password aging. I took a look and can not find out how many days. My memory says 60 or 90 days.<BR /><BR />Note Trusted system itself is in its final OS release with HP-UX. With the next OS release something different will need to be used.<BR /><BR />This document mentions an acceptable alternative to trusted system but also seems to not mention HOW MANY days the password should last: <A href="http://www.auscert.org.au/render.html?it=5819" target="_blank">http://www.auscert.org.au/render.html?it=5819</A><BR /><BR />This document does mention the number of days.<BR /><A href="http://niatec.info/pdf.aspx?id=113" target="_blank">http://niatec.info/pdf.aspx?id=113</A><BR />30<BR /><BR />&gt;&gt;<BR />meet both the TCSEC's C2 requirements and the Information Technology ... culmination of many years of effort to address IT security issues within the ..... shall be 30 days.® b. After the password aging threshold has been reached, ...<BR />&lt;&lt;<BR /><BR />A little deep, but a fun question.<BR /><BR />SEP Wed, 01 Jul 2009 07:31:03 GMT https://community.hpe.com/t5/operating-system-hp-ux/class-c2-security-setting-on-password-aging/m-p/5184685#M732776 Steven E. Protter 2009-07-01T07:31:03Z https://community.hpe.com/t5/operating-system-hp-ux/class-c2-security-setting-on-password-aging/m-p/5184686#M732777 Also, of course, the orange book itself was retired in 2005, and replaced with the "Common Criteria" (ISO 15408, parts 1-3), which is freely available in PDF form from the ISO website.<BR /><BR />(This might explain why trusted mode is deprecated.) Thu, 02 Jul 2009 07:56:53 GMT https://community.hpe.com/t5/operating-system-hp-ux/class-c2-security-setting-on-password-aging/m-p/5184686#M732777 Andrew C Fieldsend 2009-07-02T07:56:53Z https://community.hpe.com/t5/operating-system-hp-ux/class-c2-security-setting-on-password-aging/m-p/5184687#M732778 Good comments. Thu, 16 Jul 2009 02:47:45 GMT https://community.hpe.com/t5/operating-system-hp-ux/class-c2-security-setting-on-password-aging/m-p/5184687#M732778 PARK FOH CHIN 2009-07-16T02:47:45Z