topic Re: OS Security in Operating System - HP-UX

OS Security

Francisco Pereira — Mon, 11 Jun 2007 10:41:26 GMT

I read some documents that say the HPUX in a Trusted Mode is defines with C2, but i don't found any document that say how is de definition in Standard Mode.

Thanks a lot.

Re: OS Security

Mike Shilladay — Mon, 11 Jun 2007 10:58:27 GMT

Hi Francisco,

I do not know of any particular security standard to which a vanilla HP-UX adheres to. Of course, the OS can be made trusted, you can also purchase the Virtual Vault secure version of the OS, (eg 11.04).

A good book of security is "hp-ux 11i security by Chris Wong" ISBN 0-13-033062-0.

Hope that is useful,

Mike.

Re: OS Security

Steven E. Protter — Mon, 11 Jun 2007 11:11:54 GMT

Shalom,

Trusted mode has been deprecated and is unavailable in HP-UX 11.31

It is replaced by this:
http://h20293.www2.hp.com/portal/swdepot/displayProductInfo.do?productNumber=StdModSecExt

In general security is a policy.

You decide you are going to respond to security bulletins and you do. A good hardening tool is Bastille:

http://h20293.www2.hp.com/portal/swdepot/displayProductInfo.do?productNumber=B6849AA
Requires:
http://h20293.www2.hp.com/portal/swdepot/displayProductInfo.do?productNumber=PERL

Good:
http://h20293.www2.hp.com/portal/swdepot/displayProductInfo.do?productNumber=B9901AA

SEP

Re: OS Security

Bill Hassell — Mon, 11 Jun 2007 20:51:14 GMT

Standard HP-UX (without shadow password) does not conform to even C1 level. See http://www.boran.com/security/tcsec.html as a starting point. For 11.23 and earlier, Trusted (C2) is a minimum.