HPE Community
Operating System - HP-UX
1833057 Members
2743 Online
110049 Solutions
New Discussion

risks of trusting a system

 
Adam Noble
Super Advisor

‎12-13-2007 01:14 AM

‎12-13-2007 01:14 AM

risks of trusting a system

Hi all,

We have a number of systems that are still untrusted. The systems are critical production servers and I am wary of trusting them. There is a lot of ftp activity (yes ftp sorry) and I seem to recall that often users can be prompted to change there password and ftp accounts can be disabled. Can somebody confirm this?

Thanks
0 Kudos
Reply
6 REPLIES 6
F Verschuren
Esteemed Contributor

‎12-13-2007 01:17 AM

‎12-13-2007 01:17 AM

Re: risks of trusting a system

yes you can go trusted and disable all the checks, befor you are making the system trusted make sure all the users have a 8 diget passwd.
0 Kudos
Reply
Adam Noble
Super Advisor

‎12-13-2007 01:52 AM

‎12-13-2007 01:52 AM

Re: risks of trusting a system

I have just tested on another system. I have a userid and I set the password to sic and then trust it. I am still able to login with that password and am not prompted to change it.
0 Kudos
Reply
Jeeshan
Honored Contributor

‎12-13-2007 01:56 AM

‎12-13-2007 01:56 AM

Re: risks of trusting a system

Do you enable password aging policy?

enabling this you can specify how often the system will prompt you to change the password.
a warrior never quits
0 Kudos
Reply
Adam Noble
Super Advisor

‎12-13-2007 02:09 AM

‎12-13-2007 02:09 AM

Re: risks of trusting a system

I notice password ageing is initially disabled, so if I enable that will all users be initially prompted to change there password?
0 Kudos
Reply
Anshumali
Esteemed Contributor

‎12-13-2007 02:19 AM

‎12-13-2007 02:19 AM

Re: risks of trusting a system

till you select
[ ] Expire All User Passwords Immediately
Answer should be no

Anshu
Dreams are not which you see while sleeping, Dreams are which doesnt allow you to sleep while you are chasing for them!!
0 Kudos
Reply
James R. Ferguson
Acclaimed Contributor

‎12-13-2007 04:45 AM

‎12-13-2007 04:45 AM

Re: risks of trusting a system

Hi Adam:

Trusted mode is deprecated beginning at 11.31. A number of features can be added at 11.23 to the so-called "standard" mode with this product:

http://h20392.www2.hp.com/portal/swdepot/displayProductInfo.do?productNumber=StdModSecExt

Regards!

...JRF...
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.