HPE Community
Operating System - HP-UX
1837002 Members
2384 Online
110111 Solutions
New Discussion

Planning to have the Cluster on the Internet

 
Faizer Jameel
Frequent Advisor

‎12-18-2004 03:40 AM

‎12-18-2004 03:40 AM

Planning to have the Cluster on the Internet

Hi Gurus
We are planning to have our two node MSCG cluster on the internet. Please advise me on the security measures that need to be taken from the OS side [HPUX11.11] and from the cluster side. Security level is going to be medium at the begining.
Thanks in advance
Faizer
0 Kudos
Reply
2 REPLIES 2
steven Burgess_2
Honored Contributor

‎12-18-2004 05:04 AM

‎12-18-2004 05:04 AM

Re: Planning to have the Cluster on the Internet

Hello

You probably need to do some reading to fully understand exactly what your doing and why

HPUX- Bastille

http://docs.hp.com/en/5990-8153/ch08s04.html

HTH

Steve
take your time and think things through
0 Kudos
Reply
Steven E. Protter
Exalted Contributor

‎12-19-2004 02:15 AM

‎12-19-2004 02:15 AM

Re: Planning to have the Cluster on the Internet

I have a HP-9000 server on the public Internet.

There have been tens of thousands of attempts to compromise it this year.

All have failed. Several have been inventive enough to lead to my next paragraph.

I recommend before you put valuable machines and hardware on the Internet you security focus be re-classified tp PARANOID.

Example.

Disable for good r- protocols in inet.conf. disable telnet and ftp and any other protocol that uses clear text authentication.

IF the boxes don't need sendmail, then remove the binaries and disable the daemon.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.