HPE Community
Operating System - HP-UX
1837173 Members
2450 Online
110113 Solutions
New Discussion

question regarding trusted system

 
Ricky_4
Frequent Advisor

‎04-13-2003 10:01 PM

‎04-13-2003 10:01 PM

question regarding trusted system

Hi All,

What will be the effect if we convert HPUX 11.00 into trusted system? Currently, this L2000 have db2 dbase, websphere and ftp server enable. And we want to know if all the applicaton installed and services are still up and running after the trusted system conversion.

Thanks in advance.
0 Kudos
Reply
6 REPLIES 6
Michael Tully
Honored Contributor

‎04-13-2003 10:11 PM

‎04-13-2003 10:11 PM

Re: question regarding trusted system

Changing your system to trusted is very straightfoward.

# /usr/lbin/tsconvert

BUT! beware of the implications, firstly it will expire *all* passwords. The second thing thing is, how your application will handle the change. It could cause some unsuspecting problems. If possible try it out on a test or development system first. You can rollback the trusted change if necessary.

# /usr/lbin/tsconvert -r
Anyone for a Mutiny ?
0 Kudos
Reply
Steven E. Protter
Exalted Contributor

‎04-13-2003 10:28 PM

‎04-13-2003 10:28 PM

Re: question regarding trusted system

I actually converted my systems in a novel way while doing a genral security project.

I installed Bastille.

It is a security hardening tool, free ported by HP from Linux.

Here is a link. You run it in X-Windows, it asks you if you want to run as a trusted system and you are done.


Required Perl install

http://www.software.hp.com/cgi-bin/swdepot_parser.cgi/cgi/displayProductInfo.pl?productNumber=PERL

Bastille: Security Hardening Tool

http://www.software.hp.com/cgi-bin/swdepot_parser.cgi/cgi/displayProductInfo.pl?productNumber=B6849AA


SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Reply
Ravi_8
Honored Contributor

‎04-13-2003 11:01 PM

‎04-13-2003 11:01 PM

Re: question regarding trusted system

Hi,

even after converting the sysetm to be a trusted, all the DB2 database, websphere anf ftp will work.
never give up
0 Kudos
Reply
Tim Sanko
Trusted Contributor

‎04-15-2003 05:03 AM

‎04-15-2003 05:03 AM

Re: question regarding trusted system

The tsconvert works, but if you are a gui man (Said in my best Arnorl Swartznegger) you can convert, and deconvert from sam.

Test in the middle with a few users and roll back and forth.

The applications you mention should work fine after conversion.

Tim
0 Kudos
Reply
RAC_1
Honored Contributor

‎04-15-2003 05:11 AM

‎04-15-2003 05:11 AM

Re: question regarding trusted system

to avoid expiration of all passwords use

/usr/lbin/modprpw -V

There is no substitute to HARDWORK
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.