HPE Community
Operating System - HP-UX
1829539 Members
2113 Online
109992 Solutions
New Discussion

Re: Remote Data access

 
javedk
Advisor

‎03-28-2007 10:15 PM

‎03-28-2007 10:15 PM

Remote Data access

Hi, We have a requirement to allow remote VPN access to one of our software vendors to access our data for trouble shooting purpose. The data is confidentail and the kind of acces requested is telnet and sqlplus. Is it possible to monitor all commands being run by them using telnet and sqlplus.

How are these kind of requests generally handled?
0 Kudos
Reply
2 REPLIES 2
Steven E. Protter
Exalted Contributor

‎03-28-2007 10:56 PM

‎03-28-2007 10:56 PM

Re: Remote Data access

Shalom,

Yes, especially for telnet. If the data is confidential, you might wish to use ssh instead of telnet. ssh does the same thing except that authentication and data connection is encrypted.

Make sure in telnet/ssh the HISTFILE option is set in the user environment.

The vendor can turn it off, but that command will be visible.

You can look at the archive logs to see all read/write transactions on the database and sqplus probably has a logging mode you can insist on using.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Reply
javedk
Advisor

‎03-28-2007 11:33 PM

‎03-28-2007 11:33 PM

Re: Remote Data access

They can easily bypass HISTFILE and hence we canot depend fully on HISTFILE.

Sorry if I am asking something silly. Is there a way we can avoid a remote user from doing things like cat a file and capture it in their terminal emulator.

To be more precise is it possible for us to ensure that the remote user will not capture our information if they are just given an SSH and sqlplus.
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.