HPE Community
Operating System - HP-UX
1834939 Members
2380 Online
110071 Solutions
New Discussion

Re: Capturing tool

 
wahab
Occasional Contributor

‎12-22-2003 04:04 PM

‎12-22-2003 04:04 PM

Capturing tool

Dear Colleagues,

As a security administrator I am supposed to takeover our HP-UX system security administration from our production system administrators.
I am looking for a tool that allows me to take snapshot of the current system situation, which reflects the status of the system at the takeover time.


0 Kudos
Reply
5 REPLIES 5
Steven E. Protter
Exalted Contributor

‎12-22-2003 04:11 PM

‎12-22-2003 04:11 PM

Re: Capturing tool

There is a very good system snapshot tool in the Hands on with 11i course. My book is 15 miles away, so I'll post back in the morning.

Another way to get a good snapshot, if you have somewhere to install it is make_tape_recvoery

You take a copy of vg00 and you've got a great picture of where a system is.

tripwire security tool comes to mind and will track changes to configuration files for you.

I'll try and get back you in the morning.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Reply
Michael Tully
Honored Contributor

‎12-22-2003 04:27 PM

‎12-22-2003 04:27 PM

Re: Capturing tool

As part of the ignite suite of tools, you can use print_manifest to get a snapshot of the system. From a security standpoint, there are a number of tools around, nessus, satan, tripwire and the like. You could always turn on the system auditing for a period of time to track system events. As part of our security, we use an in-house script thet tracks changes to certain files and reports the difference between the new and the old.
Anyone for a Mutiny ?
0 Kudos
Reply
wahab
Occasional Contributor

‎12-22-2003 05:03 PM

‎12-22-2003 05:03 PM

Re: Capturing tool

Dear Michael,
what are these files?
if possible can you send to my e-mail
the script.

Thanks,
0 Kudos
Reply
T G Manikandan
Honored Contributor

‎12-22-2003 05:26 PM

‎12-22-2003 05:26 PM

Re: Capturing tool

Ignite is a software which is available here

http://software.hp.com/products/IUX

Take a look at the web page

All the commands Micheal suggested will be available once the software is loaded
0 Kudos
Reply
Tony Romero_1
New Member

‎01-06-2004 04:56 AM

‎01-06-2004 04:56 AM

Re: Capturing tool

I highly recommend you use sysinfo for this. It gives you all everything you need to know regarding system data such as hostname, ip, logical and group volumes, etc, etc.
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.