https://community.hpe.com/t5/operating-system-hp-ux/backdoors/m-p/2714460#M757349 There are plenty of holes if you're running insecure or unpatched system. Here's a few:<BR /><BR /><A href="http://www.ciac.org/ciac/bulletinsByType/vndr_hp_bulletins.html" target="_blank">http://www.ciac.org/ciac/bulletinsByType/vndr_hp_bulletins.html</A> Tue, 30 Apr 2002 20:57:48 GMT Christopher Caldwell 2002-04-30T20:57:48Z https://community.hpe.com/t5/operating-system-hp-ux/backdoors/m-p/2714458#M757347 Are there any known backdoor programs associated with HP-UX 11i? [Similar to backdoor leapfrog] Tue, 30 Apr 2002 19:29:33 GMT https://community.hpe.com/t5/operating-system-hp-ux/backdoors/m-p/2714458#M757347 Anu Lanka 2002-04-30T19:29:33Z https://community.hpe.com/t5/operating-system-hp-ux/backdoors/m-p/2714459#M757348 leapfrog is an M$ (micro-soft) issue, and because it's so easy to get users to click on attachments in M$ OS's it's easy to get these things installed.<BR /><BR />I would imagine that you could have users install ROGUE processes, but they could only assume that users access priviledges, and they would have to explicitly install them. Now if a root user was to install a trojan horse, well shame on them!<BR /><BR />live free or die<BR />harry Tue, 30 Apr 2002 19:34:38 GMT https://community.hpe.com/t5/operating-system-hp-ux/backdoors/m-p/2714459#M757348 harry d brown jr 2002-04-30T19:34:38Z https://community.hpe.com/t5/operating-system-hp-ux/backdoors/m-p/2714460#M757349 There are plenty of holes if you're running insecure or unpatched system. Here's a few:<BR /><BR /><A href="http://www.ciac.org/ciac/bulletinsByType/vndr_hp_bulletins.html" target="_blank">http://www.ciac.org/ciac/bulletinsByType/vndr_hp_bulletins.html</A> Tue, 30 Apr 2002 20:57:48 GMT https://community.hpe.com/t5/operating-system-hp-ux/backdoors/m-p/2714460#M757349 Christopher Caldwell 2002-04-30T20:57:48Z https://community.hpe.com/t5/operating-system-hp-ux/backdoors/m-p/2714461#M757350 Like any non-trivial operating system, there are going to be exploits. However, there is virtually nothing in HP-UX that is similar to any version of PC Windows. HP-UX is shipped in an open state for the most part and you must take explicit steps to secure the operating system PRIOR to connecting it to a network. The changes may be simple modifications to /etc/profile, to turning off network daemons to installing IDS/9000...the steps are very dependent on your environment. Tue, 30 Apr 2002 22:00:42 GMT https://community.hpe.com/t5/operating-system-hp-ux/backdoors/m-p/2714461#M757350 Bill Hassell 2002-04-30T22:00:42Z https://community.hpe.com/t5/operating-system-hp-ux/backdoors/m-p/2714462#M757351 Hi Anu,<BR /><BR />you could read the "bastion host" script to get information about what to close down to make your system more secure...<BR /><BR />Get it from there:<BR /><A href="http://people.hp.se/stevesk/bastion.html" target="_blank">http://people.hp.se/stevesk/bastion.html</A><BR /><BR />HTH,<BR />Wodisch<BR /> Tue, 30 Apr 2002 23:33:42 GMT https://community.hpe.com/t5/operating-system-hp-ux/backdoors/m-p/2714462#M757351 Wodisch 2002-04-30T23:33:42Z https://community.hpe.com/t5/operating-system-hp-ux/backdoors/m-p/2714463#M757352 Hi<BR /><BR />hpux has its security issues and has rightly been pointed out is shipped in an open state.<BR /><BR />however it is still much more than secure than NT , now what did Bill Gates say NT stands for yes I remeber "No Trust"<BR /><BR />cheers<BR />John. Wed, 01 May 2002 06:28:42 GMT https://community.hpe.com/t5/operating-system-hp-ux/backdoors/m-p/2714463#M757352 John Carr_2 2002-05-01T06:28:42Z