HPE Community
Operating System - HP-UX
1820177 Members
4217 Online
109620 Solutions
New Discussion юеВ

Bastille hardening and log files

 
robert fowler_1
Advisor

тАО03-08-2005 03:55 AM

тАО03-08-2005 03:55 AM

Bastille hardening and log files

I have run Bastille on two systems and wish to know were the following logs go

Q Should bastille enable logging for all inetd connections ?

Q Do you want basic system security auditing enabled.

Note I think this might be displayed in x windows, however this version is run from a precompiled config file and bastille -b
0 Kudos
6 REPLIES 6
Steven E. Protter
Exalted Contributor

тАО03-08-2005 05:33 AM

тАО03-08-2005 05:33 AM

Re: Bastille hardening and log files

In this circumstance, I'd look at the config file and the log file for the bastille -b run.

Somewhere in /var/opt/sec_mgmt/bastille

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Robert Fritz
Regular Advisor

тАО03-08-2005 06:00 AM

тАО03-08-2005 06:00 AM

Re: Bastille hardening and log files

Hi there,

The last run config is kept at:
/var/opt/sec_mgmt/bastille/last.config

You can look in there to see what the value was for the questions you're referring to.

"bastille -l" will tell you which /etc/opt/sec_mgmt config file coresponds to that file.

Hope that helps,
-R
Those Who Would Sacrifice Liberty for Security Deserve Neither." - Benjamin Franklin
0 Kudos
robert fowler_1
Advisor

тАО03-08-2005 08:47 PM

тАО03-08-2005 08:47 PM

Re: Bastille hardening and log files

I think i have explained this wrong, i need to know what changes are been made to the OS. I have support staff asking were the log files are and Bastille only tells me that it is enabeling logging, not were the files will be.

I want to know for the two bastille questions answered were are the log files stored in HP-UX 11i version 1

thanks again
0 Kudos
Ranjith_5
Honored Contributor

тАО03-08-2005 10:07 PM

тАО03-08-2005 10:07 PM

Re: Bastille hardening and log files

Hi Robert,

Connection logging for inetd daemon loggs the connection status for all telnet , ftp etc to /var/adm/syslog/syslog.log

regards,
Syam
0 Kudos
Ranjith_5
Honored Contributor

тАО03-08-2005 10:16 PM

тАО03-08-2005 10:16 PM

Re: Bastille hardening and log files

Hi Robert,

Forgot to write the other one.

You can go to sam-->auditing and security-->audited events-->select the event-->actions--> view audit log.

This shows the path of the audit log.If you need to change the default path u can do it here.

Default path is /.secure/etc/


Regards,
Syam
0 Kudos
robert fowler_1
Advisor

тАО03-11-2005 04:38 AM

тАО03-11-2005 04:38 AM

Re: Bastille hardening and log files

thanks everyone
0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.