HPE Community
Operating System - OpenVMS
1753360 Members
4756 Online
108792 Solutions
New Discussion юеВ

Re: hardening VMS

 
yoni szumsztajn
Occasional Contributor

тАО11-29-2004 08:05 AM

тАО11-29-2004 08:05 AM

hardening VMS

Does anybody have UCX security guide or can provide information regarding hardening tcpip stack on VMS machines?
tnxs in advance
0 Kudos
Reply
7 REPLIES 7
Karl Rohwedder
Honored Contributor

тАО11-29-2004 05:10 PM

тАО11-29-2004 05:10 PM

Re: hardening VMS

The online documentation for TCPIP can be found at http://h71000.www7.hp.com/doc/tcpip54.html
0 Kudos
Reply
Ian Miller.
Honored Contributor

тАО11-29-2004 10:03 PM

тАО11-29-2004 10:03 PM

Re: hardening VMS

The Guide to System Security is always worth a read.
http://h71000.www7.hp.com/doc/732FINAL/aa-q2hlg-te/aa-q2hlg-te.HTMl

There are specific guides for CDSA
http://h71000.www7.hp.com/doc/732FINAL/aa-rscub-te/aa-rscub-te.HTMl
and SSL
http://h71000.www7.hp.com/doc/732FINAL/aa-rscvb-te/aa-rscvb-te.HTMl
and Kerberos
http://h71000.www7.hp.com/doc/732FINAL/aa-rueba-te/aa-rueba-te.HTMl


The use of a seperate firewall is generally recommended as is having a IDS and looking at the logs.
____________________
Purely Personal Opinion
0 Kudos
Reply
Robert Gezelter
Honored Contributor

тАО11-29-2004 11:09 PM

тАО11-29-2004 11:09 PM

Re: hardening VMS

Yoni,

There are many things covered by the term "hardening". On some levels, this can be as simple as turning off TCPIP services that are not SSL-secured (and using a proper X.509 certificate with those that are).

Another common security issue is the awarding of privileges, in which case the appropriate answer is "NO". I have a presentation that I gave at the last HP World on techniques to implement large scale, heavily secure OpenVMS systems, a set of summary notes can be found at http://www.rlgsc.com/hpworld/2004/N227.html

I hope that the above is helpful.

- Bob Gezelter, http://www.rlgsc.com
0 Kudos
Reply
Melinda Chan
Advisor

тАО12-01-2004 02:57 PM

тАО12-01-2004 02:57 PM

Re: hardening VMS

Robert
I've been asked to write an "OpenVMS standard security configuration" document.

Your link to http://www.rlgsc.com/hpworld/2004/N227.html sounded very interesting. But I am having trouble accessing it.
Is it correct?

thanks
Melinda
0 Kudos
Reply
Melinda Chan
Advisor

тАО12-01-2004 03:02 PM

тАО12-01-2004 03:02 PM

Re: hardening VMS

Please ignore that entry Robert, I got the notes..
but none the less, I too am interested in the general topic of hardening VMS
0 Kudos
Reply
Ian Miller.
Honored Contributor

тАО12-02-2004 12:03 AM

тАО12-02-2004 12:03 AM

Re: hardening VMS

The hp manaual "Guide to System Security" is a good place to start for that sort of thing.
____________________
Purely Personal Opinion
0 Kudos
Reply
Robert Gezelter
Honored Contributor

тАО12-12-2004 01:04 AM

тАО12-12-2004 01:04 AM

Re: hardening VMS

Melinda,

I am sorry that you had a problem accessing the presentation. We did have a connectivity problem at about that time, perhaps you got affected by it.

From you second message, it appears that you were finally successful at retrieving the presentation.

I will be happy to answer most questions about the presentation.

- Bob Gezelter, http://www.rlgsc.com
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.