HPE GreenLake Administration
- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- /etc/default/security file
Operating System - HP-UX
1833315
Members
2998
Online
110051
Solutions
Forums
Categories
Company
Local Language
back
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Forums
Discussions
Discussions
Discussions
Forums
Discussions
back
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Blogs
Information
Community
Resources
Community Language
Language
Forums
Blogs
Go to solution
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-22-2002 02:21 AM
05-22-2002 02:21 AM
Hi everybody,
I find no information on this file. Which criteria can I use in this file on a non-trusted-system??
Thanks for your help
I find no information on this file. Which criteria can I use in this file on a non-trusted-system??
Thanks for your help
Solved! Go to Solution.
4 REPLIES 4
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-22-2002 02:43 AM
05-22-2002 02:43 AM
Re: /etc/default/security file
Oliver,
Try a forums search on /etc/default/security. For example, I got this link:http://forums.itrc.hp.com/cm/QuestionAnswer/1,,0x0c8b8cc5e03fd6118fff0090279cd0f9,00.html
Hope this helps,
Pete
Pete
Try a forums search on /etc/default/security. For example, I got this link:http://forums.itrc.hp.com/cm/QuestionAnswer/1,,0x0c8b8cc5e03fd6118fff0090279cd0f9,00.html
Hope this helps,
Pete
Pete
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-22-2002 02:46 AM
05-22-2002 02:46 AM
Re: /etc/default/security file
check this link for
Bill Hassel's description about /etc/default/security which was introduced from 11.0 for centralized security.
http://www.interex.org/pubcontent/enterprise/jul01/09uxqa.html
THanks
Bill Hassel's description about /etc/default/security which was introduced from 11.0 for centralized security.
http://www.interex.org/pubcontent/enterprise/jul01/09uxqa.html
THanks
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-22-2002 02:48 AM
05-22-2002 02:48 AM
Solution
/*
A centralized location ( /etc/default/security) for default security parameters has been cre-ated
in HP-UX 11i. Currently the login, passwd and su commands utilize this information. Each
line in the file is treated either as a comment or as configuration information for a given system
command or feature. If any parameter is not defined or is commented out in this file, the default
behavior detailed below will apply. This file must be world readable and root writable.
Parameter definitions, valid values, and defaults are defined as follows:
??? ABORT_LOGIN_ON_MISSING_HOMEDIR - This parameter controls login behavior
if a user's home directory does not exist. This is applicable only for non-root users. If
the parameter is set to one (1) the login session will exit if the user???s home directory
does not exist. If it is set to zero (0) the user will be allowed to login and his home
directory will be set to the root directory (/). The default value is zero.
??? MIN_PASSWORD_LENGTH - This parameter controls the minimum length of new
passwords. For untrusted systems it can be any value from 6 to 8. It is not applicable
to the root user on a untrusted system. For trusted systems it can be any value from 6 to
80. The default value is 6.
??? NOLOGIN - This parameter controls whether non-root login can be disabled by the /etc/
nologin file. If the value is 1, the contents of the file /etc/nologin will be displayed and
the root user will not be allowed access. If the value is 0, the presence of the file is
ignored. The default value is 0.
??? NUMBER_OF_LOGINS_ALLOWED - This parameter controls the number of logins
allowed per user. This is applicable only for non-root users. A value of zero (0) allows
unlimited logins. The default value is 0.
??? PASSWORD_HISTORY_DEPTH - This parameter controls the password history depth.
A new password is checked only against the number of most recently used passwords
stored in password history for a particular user. A user is not allowed to reuse a previ-ously
used password. The password history depth configuration is on a system basis
and is supported in trusted system. This feature does not support the users in NIS or
NISPLUS repositories. Once the feature is enabled, all the users on the system are
subject to the same check. If this parameter is not configured, the password history
check feature is automatically disabled. When the feature is disabled, the password
history check depth is set to 1. A password change is subject to all of the other rules for
a new password including a check with the current password. The default value is 1.
??? SU_ROOT_GROUP - This parameter defines the root group name for the su command.
The root group name is set to the specified symbolic group name. The su command
enforces the restriction that a non-superuser must be a member of the specified root
group in order to be allowed to su to root. This does not alter password checking. If this
parameter is not defined or if it is commented out, there is no default value. In this case,
a non-superuser is allowed to su to root without being bound by root group restrictions.
??? SU_DEFAULT_PATH - This parameter defines a new default PATH environment value
to be set when su is done. The PATH environment variable is set to new_PATH when
the su command is invoked. Other environment values are not changed. The path value
is not validated. This is applicable only when the "-" option is not used along with su
command. By default the path is not changed.
*/
Thanks
A centralized location ( /etc/default/security) for default security parameters has been cre-ated
in HP-UX 11i. Currently the login, passwd and su commands utilize this information. Each
line in the file is treated either as a comment or as configuration information for a given system
command or feature. If any parameter is not defined or is commented out in this file, the default
behavior detailed below will apply. This file must be world readable and root writable.
Parameter definitions, valid values, and defaults are defined as follows:
??? ABORT_LOGIN_ON_MISSING_HOMEDIR - This parameter controls login behavior
if a user's home directory does not exist. This is applicable only for non-root users. If
the parameter is set to one (1) the login session will exit if the user???s home directory
does not exist. If it is set to zero (0) the user will be allowed to login and his home
directory will be set to the root directory (/). The default value is zero.
??? MIN_PASSWORD_LENGTH - This parameter controls the minimum length of new
passwords. For untrusted systems it can be any value from 6 to 8. It is not applicable
to the root user on a untrusted system. For trusted systems it can be any value from 6 to
80. The default value is 6.
??? NOLOGIN - This parameter controls whether non-root login can be disabled by the /etc/
nologin file. If the value is 1, the contents of the file /etc/nologin will be displayed and
the root user will not be allowed access. If the value is 0, the presence of the file is
ignored. The default value is 0.
??? NUMBER_OF_LOGINS_ALLOWED - This parameter controls the number of logins
allowed per user. This is applicable only for non-root users. A value of zero (0) allows
unlimited logins. The default value is 0.
??? PASSWORD_HISTORY_DEPTH - This parameter controls the password history depth.
A new password is checked only against the number of most recently used passwords
stored in password history for a particular user. A user is not allowed to reuse a previ-ously
used password. The password history depth configuration is on a system basis
and is supported in trusted system. This feature does not support the users in NIS or
NISPLUS repositories. Once the feature is enabled, all the users on the system are
subject to the same check. If this parameter is not configured, the password history
check feature is automatically disabled. When the feature is disabled, the password
history check depth is set to 1. A password change is subject to all of the other rules for
a new password including a check with the current password. The default value is 1.
??? SU_ROOT_GROUP - This parameter defines the root group name for the su command.
The root group name is set to the specified symbolic group name. The su command
enforces the restriction that a non-superuser must be a member of the specified root
group in order to be allowed to su to root. This does not alter password checking. If this
parameter is not defined or if it is commented out, there is no default value. In this case,
a non-superuser is allowed to su to root without being bound by root group restrictions.
??? SU_DEFAULT_PATH - This parameter defines a new default PATH environment value
to be set when su is done. The PATH environment variable is set to new_PATH when
the su command is invoked. Other environment values are not changed. The path value
is not validated. This is applicable only when the "-" option is not used along with su
command. By default the path is not changed.
*/
Thanks
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-22-2002 02:52 AM
05-22-2002 02:52 AM
Re: /etc/default/security file
This link should be in a good readable format
http://devresource.hp.com/STKLI/man/11iv1.5/security_4.html
http://devresource.hp.com/STKLI/man/11iv1.5/security_4.html
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.
Company
Events and news
Customer resources
© Copyright 2025 Hewlett Packard Enterprise Development LP