HPE Community
Operating System - HP-UX
1834149 Members
2490 Online
110064 Solutions
New Discussion

guidelines for installing HPUX as platform for a firewall

 
SOLVED
Go to solution
Martin Christov
Advisor

‎06-30-2001 12:55 AM

‎06-30-2001 12:55 AM

guidelines for installing HPUX as platform for a firewall

Hello folks,
I am looking for a whitepapers regarding the above topic. I am going to prepare several HP-Servers (11.00) as firewalls. I'd like to know how to install only the required portions of HPUX and to close potential sec.holes from the beginning. My firewall manual "installing..." includes no information about the HPUX-installation.
Thanks in advance for your help!
Regards:
Martin
sudo question
0 Kudos
Reply
4 REPLIES 4
Paula J Frazer-Campbell
Honored Contributor

‎06-30-2001 10:59 AM

‎06-30-2001 10:59 AM

Re: guidelines for installing HPUX as platform for a firewall

Hi
I do not know of a white paper, but I would start will a full install configure the NIC cards and then strip down the OS and remove all executables that are not required.

Paula
If you can spell SysAdmin then you is one - anon
0 Kudos
Reply
Marc Dijkstra
Trusted Contributor

‎07-01-2001 01:38 AM

‎07-01-2001 01:38 AM

Re: guidelines for installing HPUX as platform for a firewall

Hi there.
There are a few normal holes one can close, things like securetty's -- blocking root login from anywhere but console etc. Closing down anonymous ftp, sendmail holes (LOTS!) etc.
Can your firewall software handle a C2 secure HP system? If so then convert your UX to a trusted system (place the tcb etc.) and take it from there.

There are a number of papers avilable on the LINUX sites re: securing your system, have a look at them for guidelines, as the UN*X's are very much of a muchness securitywise.

MND
"A computer lets you make more mistakes faster than any invention in human history - with the possible exceptions of handguns and tequila"
0 Kudos
Reply
Thierry Poels_1
Honored Contributor

‎07-01-2001 08:53 AM

‎07-01-2001 08:53 AM

Solution

Re: guidelines for installing HPUX as platform for a firewall

Hi,
you could start of with this one: How to build a bastion host with HP-UX 11.00:

http://people.hp.se/stevesk/bastion11.html

good luck,
Thierry.
All unix flavours are exactly the same . . . . . . . . . . for end users anyway.
Reply
Bill Hassell
Honored Contributor

‎07-01-2001 01:28 PM

‎07-01-2001 01:28 PM

Re: guidelines for installing HPUX as platform for a firewall

I would not rely on any operating system as the sole firewall for your LAN. These are general purpose systems which (with the appropriate programs) can be turned into reliable firewalls. But the technology required is way beyond inetd.sec and inetd.conf. And don't ever purchase a cheap (or free) firewall package. It takes an expert to evaluate the effectiveness of a firewall package.

Reputable firewall programs will come with regular updates because hackers keep locating new ways to attack and infiltrate. Recent experiences at Shields-Up (www.grc.com) indicate that network attacks are going to get much worse.


Bill Hassell, sysadmin
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.