- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- HP-UX C2 Trusted
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-25-2003 12:12 AM
тАО06-25-2003 12:12 AM
HP-UX C2 Trusted
I have HP-UX 10.20 whit Oracle 7.3 and I'm going to convert this system to C2 Trusted.
Must I to do anything with Oracle?
Thanks.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-25-2003 12:26 AM
тАО06-25-2003 12:26 AM
Re: HP-UX C2 Trusted
Have a look at Trusted Oracle7 MLS RDBMS, a
state-of-the-art product built to support a strict multilevel security (MLS) policy on trusted operating systems.
today this is called "Oracle Label Security"
hope this helps!
regards
Yogeeraj
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-25-2003 12:50 AM
тАО06-25-2003 12:50 AM
Re: HP-UX C2 Trusted
AFAIK, there are no problem, since this affect only the way users are authenticated.
However, you should pay attention to the secutiry polivi on the user, the oracle owner shuold ve allowed to login at every hour, and that its password never expires ans so on, to prevent startup/shutdown problem suddenly.
I had two C2 systems, one 7.3 and one 8.0.5, and they had no particular problem, keeping in mind my previous notice.
BTW, you know that 10.20 and 7.3 are praticallly out of support ?
HTH,
Massimo
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-25-2003 03:16 PM
тАО06-25-2003 03:16 PM
Re: HP-UX C2 Trusted
I had to return in mode no trusted.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-25-2003 03:18 PM
тАО06-25-2003 03:18 PM
Re: HP-UX C2 Trusted
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-25-2003 03:24 PM
тАО06-25-2003 03:24 PM
Re: HP-UX C2 Trusted
I just converted our Oracle development machine(on 11.00) to a Trusted System and had no issues. I was concerned myself about any Oracle ramifications and was not able to find anything, and haven't had issues this week.
The only thing I'll need to keep my eye on are the Oracle system admin accounts, historically I haven't made them change that password and I am now. We'll find out if they have any scripts with the pass hardcoded I guess.
Good luck,
Jim
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-27-2003 12:34 PM
тАО06-27-2003 12:34 PM
Re: HP-UX C2 Trusted
sit back and relax!!
Donny
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-27-2003 12:39 PM
тАО06-27-2003 12:39 PM
Re: HP-UX C2 Trusted
No need to do something with Oracle,
the convert to trusted affect the OS (users/passwords) but it still work the
same way.
Caesar
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-27-2003 12:59 PM
тАО06-27-2003 12:59 PM
Re: HP-UX C2 Trusted
When that happens, if a security flaw comes up, Oracle won't fix it.
C2 is a nice term, but you need to think also about whether the system is actually secure.
Are you using the Berkely Protocols, rcp, et al. I don't care whether C2 permits that or not, they are not a good idea to run due to their authentication methodology.
Does C2 let you run telnetd and ftpd, both of which transmit passwords back and fortth to the user in clear text? I don't know, but if you truly want a secure system they should be replaced by Secure Shell.
Does C2 certification require you to run Bastille on the machine? That is a good idea.
C2 certification should not be mistaken for true security. That is part of a broader plan that means keeping up on security patches, running the right tools and getting down for some good olf fashioned sysetms adminitration by looking at umask, default permissions and such.
C2 is a requirement for certain government computer systems that is a good start, but it hasn't stopped penetration of secure systems at the Pentagon has it?
Food for thought.
Sumamry: C2, a good start, but not the ending.
SEP
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com