- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Customizing Security settings-HPUX 11.23
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Forums
Discussions
Discussions
Discussions
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-30-2007 04:02 AM
05-30-2007 04:02 AM
Our customer is requesting some changes to our security settings. We are running HP-UX 11.23 in trusted mode. I'm not sure I agree with what they want, but first, what is possible in what they asked.
First, they want to change the "invalid login" string that comes up when a user has a wrong password or the account is locked. I haven't seen a file that has the text that displays for those prompts, so I'm assuming that it's not possible. Am I correct ?
Secondly, they want * to print when the user types their password instead of not echo-ing anything. (darn windows bigots)
They also want a max of 3 invalid logins before kicking you out. I see the parameter in SAM to set for that for modems/terminals, (and that is set) but it says that does not apply to network sessions. Do I need to play with the login timeout setting to get it to line up or is there another setting?
Thanks
Jim
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-30-2007 04:12 AM
05-30-2007 04:12 AM
Solution- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-30-2007 04:14 AM
05-30-2007 04:14 AM
Re: Customizing Security settings-HPUX 11.23
Request 2 - print *'s when entering passwords -- NOT POSSIBLE as far as I know.
Request 3 - max 3 invalid logins before kicking you out -- NOT POSSIBLE as far as I know.
I think the only way to do these things would be to write a custom login program or PAM module.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-30-2007 04:18 AM
05-30-2007 04:18 AM
Re: Customizing Security settings-HPUX 11.23
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-30-2007 04:21 AM
05-30-2007 04:21 AM
Re: Customizing Security settings-HPUX 11.23
thanks for the VERY quick responses.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-30-2007 04:34 AM
05-30-2007 04:34 AM
Re: Customizing Security settings-HPUX 11.23
Yes. There is no customization mechanism. This message is hard coded in the program.
> want * to print
Again, no mechanism exists to change this. The stty command allows echo or no-echo but no translation.
> 3 invalid logins ...
From the login man page:
"After three unsuccessful login attempts, a HANGUP signal is issued."
On a trusted system, /usr/lbin/modprdef is the UNDOCUMENTED command that accomplishes such changes. SAM calls this command so when you change the login retry count, parameter umaxlntr is used, and for timeout until user can try again, the value is dlylntr. The SAM log shows the actual command so you can guess the meaning of the parameters by changing a number and seeing the resultant command line.
Bill Hassell, sysadmin
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-30-2007 04:50 AM
05-30-2007 04:50 AM
Re: Customizing Security settings-HPUX 11.23
Using telnet is the security hazard, isn't it?
Hope this helps!
Regards
Torsten.
__________________________________________________
There are only 10 types of people in the world -
those who understand binary, and those who don't.
__________________________________________________
No support by private messages. Please ask the forum!
If you feel this was helpful please click the KUDOS! thumb below!

- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-30-2007 05:09 AM
05-30-2007 05:09 AM
Re: Customizing Security settings-HPUX 11.23
thanks!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-30-2007 07:32 AM
05-30-2007 07:32 AM
Re: Customizing Security settings-HPUX 11.23
Thanks to all for your assistance on this.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-04-2007 07:13 AM
06-04-2007 07:13 AM