- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Hardening
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Forums
Discussions
Discussions
Discussions
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-07-2003 07:31 PM
05-07-2003 07:31 PM
Hardening
??set the minimum length to 8 characters
??null passwords cannot be used
??password aging to 30 days
??account lifetime set to 0 dys
??password history to 5
??number of trys to enter a password before locking the account to 3
??set new accounts to be locked
??lockout duration to forever
??set auto disable of inactive accounts to 30 days
??enable last login prompt
i tried using sam, set it 1 by 1, but what if i have numerous users? i believe that there's a file (jes like linux) that should be edited to meet the requirements for default policies mentioned above.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-07-2003 07:34 PM
05-07-2003 07:34 PM
Re: Hardening
There is a man page for it, that should give all the details you require.
$ man 4 security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-07-2003 07:55 PM
05-07-2003 07:55 PM
Re: Hardening
Then you can make exceptions for root.
All in sam.
SEP
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-07-2003 08:59 PM
05-07-2003 08:59 PM
Re: Hardening
i tried man security but system says no manual for security
im using UX 11.00
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-08-2003 01:23 AM
05-08-2003 01:23 AM
Re: Hardening
eventhough the os is 11.00 u can create security file and put the entries.
PASSWORD_HISTORY_DEPTH=5
Like there are other entries.
In a trusted system u can set all those for all users at once. in sam goto auditing and security then system security policies
Regards
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-08-2003 01:28 AM
05-08-2003 01:28 AM
Re: Hardening
If not you'll need to create one from scratch.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-08-2003 01:33 AM
05-08-2003 01:33 AM
Re: Hardening
The security file does not exist until you create it.
The man page for security isn't available at 11.00, only at 11i. Here's a link to the online man pages for 11i, check the S/Security page:
http://docs.hp.com/hpux/onlinedocs/B2355-90696/B2355-90696.html
Within SAM, you can set some of the policies you mentioned. Have a look at Auditing & Security -> System Security Policies. These values get ritten into /tcb/files/auth/system/default, however you shouldn't manually edit this file. The man page for this file is default(4) and is available on your 11.00 system.
regards,
Darren