HPE Community
Operating System - HP-UX
1856496 Members
20931 Online
104113 Solutions
New Discussion

Re: Backdoors

 
Anu Lanka
Occasional Contributor

‎04-30-2002 12:29 PM

‎04-30-2002 12:29 PM

Backdoors

Are there any known backdoor programs associated with HP-UX 11i? [Similar to backdoor leapfrog]
0 Kudos
Reply
5 REPLIES 5
harry d brown jr
Honored Contributor

‎04-30-2002 12:34 PM

‎04-30-2002 12:34 PM

Re: Backdoors

leapfrog is an M$ (micro-soft) issue, and because it's so easy to get users to click on attachments in M$ OS's it's easy to get these things installed.

I would imagine that you could have users install ROGUE processes, but they could only assume that users access priviledges, and they would have to explicitly install them. Now if a root user was to install a trojan horse, well shame on them!

live free or die
harry
Live Free or Die
0 Kudos
Reply
Christopher Caldwell
Honored Contributor

‎04-30-2002 01:57 PM

‎04-30-2002 01:57 PM

Re: Backdoors

There are plenty of holes if you're running insecure or unpatched system. Here's a few:

http://www.ciac.org/ciac/bulletinsByType/vndr_hp_bulletins.html
0 Kudos
Reply
Bill Hassell
Honored Contributor

‎04-30-2002 03:00 PM

‎04-30-2002 03:00 PM

Re: Backdoors

Like any non-trivial operating system, there are going to be exploits. However, there is virtually nothing in HP-UX that is similar to any version of PC Windows. HP-UX is shipped in an open state for the most part and you must take explicit steps to secure the operating system PRIOR to connecting it to a network. The changes may be simple modifications to /etc/profile, to turning off network daemons to installing IDS/9000...the steps are very dependent on your environment.


Bill Hassell, sysadmin
0 Kudos
Reply
Wodisch
Honored Contributor

‎04-30-2002 04:33 PM

‎04-30-2002 04:33 PM

Re: Backdoors

Hi Anu,

you could read the "bastion host" script to get information about what to close down to make your system more secure...

Get it from there:
http://people.hp.se/stevesk/bastion.html

HTH,
Wodisch
0 Kudos
Reply
John Carr_2
Honored Contributor

‎04-30-2002 11:28 PM

‎04-30-2002 11:28 PM

Re: Backdoors

Hi

hpux has its security issues and has rightly been pointed out is shipped in an open state.

however it is still much more than secure than NT , now what did Bill Gates say NT stands for yes I remeber "No Trust"

cheers
John.
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.