HPE Community
Operating System - HP-UX
1850553 Members
3728 Online
104054 Solutions
New Discussion

Gathering Information

 
SOLVED
Go to solution
Brian butler
Frequent Advisor

‎01-07-2003 07:00 AM

‎01-07-2003 07:00 AM

Gathering Information

Ok im not all the familiar with unix, but today i was prompted by my boss to find out some information, apparently we are getting audited. I was able to gather most of the information on my own, i.e. password files, and crontabs, and much more but I have a question about a couple of commands that are used to gather information.
1. Listing of all directories without ???sticky-bit???.
2. Listing of all root owned files.
3. Listing of all world writeable directories.
4. Listing of all user directories writeable by others.

It would be great if somebody could point me in the right direction to find this information.

Thanks
BPB
Reboot and give me twenty....
0 Kudos
Reply
8 REPLIES 8
harry d brown jr
Honored Contributor

‎01-07-2003 07:03 AM

‎01-07-2003 07:03 AM

Re: Gathering Information

Use the "find" command:

man find

live free or die
harry
Live Free or Die
0 Kudos
Reply
Marco Santerre
Honored Contributor

‎01-07-2003 07:08 AM

‎01-07-2003 07:08 AM

Re: Gathering Information

I know this won't answer your question, but because I have gone through this exercise not so long ago myself, I have discovered a neat little software that HP produced called IDS/9000 (Intrusion detection Software). All four elements that you are looking for, are being monitored whenever changes occurs on your system to create these events. Also this software is centralized on one machine, therefore removing the possibilities of changing the events in the log file. Without going in too much details cause, again I'm not answering your questions, it may be something you want to look into for future use.
Cooperation is doing with a smile what you have to do anyhow.
0 Kudos
Reply
Steve Steel
Honored Contributor

‎01-07-2003 07:08 AM

‎01-07-2003 07:08 AM

Re: Gathering Information

Hi


Find is correct,check it and

http://www.introcomp.co.uk/hpux/index.html

Will give good example scripts for all sorts of things


Regards

Steve Steel

Quote of the moment
-------------------
"We are drowning in information but starved for knowledge."
-- John Naisbitt
If you want truly to understand something, try to change it. (Kurt Lewin)
0 Kudos
Reply
RAC_1
Honored Contributor

‎01-07-2003 07:13 AM

‎01-07-2003 07:13 AM

Solution

Re: Gathering Information

1 find . ! -perm 1777 -depth -print

2 find . -user root -depth -print

3 find . -type d -perm 1777 -depth -print

4 find . -type d -perm 066 -depth -print
There is no substitute to HARDWORK
Reply
harry d brown jr
Honored Contributor

‎01-07-2003 07:14 AM

‎01-07-2003 07:14 AM

Re: Gathering Information

1. find / -type d \( ! -perm -1000 \)

2. find / -type f -user root

3. find / -type d -002

4. same as 3

live free or die
harry
Live Free or Die
Reply
Juerg DENNEBERG
Advisor

‎01-08-2003 02:28 AM

‎01-08-2003 02:28 AM

Re: Gathering Information

Hi Marco

where may I find this IDS/9000 Software?

Thanks

J??rg
The personal liberty goes so far as it does not affect the liberty of others
0 Kudos
Reply
Robert-Jan Goossens
Honored Contributor

‎01-08-2003 02:50 AM

‎01-08-2003 02:50 AM

Re: Gathering Information

Hi,

http://www.software.hp.com/cgi-bin/swdepot_parser.cgi/cgi/displayProductInfo.pl?productNumber=J5083AA

Robert-Jan.
0 Kudos
Reply
W.C. Epperson
Trusted Contributor

‎01-08-2003 05:43 AM

‎01-08-2003 05:43 AM

Re: Gathering Information

A logistical note:

I recently went through a systems audit where such things were requested. Iteratively with minor variations. Over and over.

I finally persuaded the auditors to let me give them a "find / -print|xargs ls -ld" output for them to "grep" on. The finds were killing my servers.
"I have great faith in fools; self-confidence, my friends call it." --Poe
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.