HPE GreenLake Administration
- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Re: Secure remote auditing/logging
Operating System - HP-UX
1832181
Members
2702
Online
110038
Solutions
Forums
Categories
Company
Local Language
back
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Forums
Discussions
Discussions
Discussions
Forums
Discussions
back
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Blogs
Information
Community
Resources
Community Language
Language
Forums
Blogs
Go to solution
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-04-2000 11:32 PM
07-04-2000 11:32 PM
Hello,
Which would be the best way/procedure to remotely audit (in a secure way) a Trusted system on HP-UX 11? I'm aware one may remotely run SAM, and thus remotely audit a computer. However, this kind of connection would not be secured (not encrypted). Maybe the use of ssh (secure shell) would be an alternative. Another question in the same direction: is it possible with a Trusted system to have encrypted remote logging? The syslogd daemon can be configured to store logs in a remote machine (loghost), but it uses a plain udp connection, which is also not secure enough. Any comments would be greatly appreciated! Thanks,
Asdrubal
Which would be the best way/procedure to remotely audit (in a secure way) a Trusted system on HP-UX 11? I'm aware one may remotely run SAM, and thus remotely audit a computer. However, this kind of connection would not be secured (not encrypted). Maybe the use of ssh (secure shell) would be an alternative. Another question in the same direction: is it possible with a Trusted system to have encrypted remote logging? The syslogd daemon can be configured to store logs in a remote machine (loghost), but it uses a plain udp connection, which is also not secure enough. Any comments would be greatly appreciated! Thanks,
Asdrubal
Asdrubal
Solved! Go to Solution.
2 REPLIES 2
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-05-2000 10:07 AM
07-05-2000 10:07 AM
Solution
I would suggest the following:
- run SAM from an ssh logged-in terminal; if you need the X gui version, you would have to enable X-tunneling in your sshd (and ssh client) for it to work.
-I would suggest that you write yourself a little utility that monitors the a syslog file and sftp's it to your target server. (or your target server could pool the server with sftp).
Good luck.
- run SAM from an ssh logged-in terminal; if you need the X gui version, you would have to enable X-tunneling in your sshd (and ssh client) for it to work.
-I would suggest that you write yourself a little utility that monitors the a syslog file and sftp's it to your target server. (or your target server could pool the server with sftp).
Good luck.
nothing wrong with me that a few lines of code cannot fix!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-05-2000 10:43 AM
07-05-2000 10:43 AM
Re: Secure remote auditing/logging
Hello,
I have a HP-UX 11.0 trusted system and I run audit remotely using ssh. Telnet, rlogin, ftp and so on are disable. Audit is turn on and monitor from a remote system that has ssh installed as well. If you do not want to use sam, you can use audit commands from command line (see man for audsys, audisp, setevent and so on).
Yes, you can have secured remote login via ssh (ssh ?l username remotemachine). You need to have ssh installed and configured on both machine. If you allowed root to login just from the console, after a regular user get in via ssh, he/she can su to root.
Hope that helps.
I have a HP-UX 11.0 trusted system and I run audit remotely using ssh. Telnet, rlogin, ftp and so on are disable. Audit is turn on and monitor from a remote system that has ssh installed as well. If you do not want to use sam, you can use audit commands from command line (see man for audsys, audisp, setevent and so on).
Yes, you can have secured remote login via ssh (ssh ?l username remotemachine). You need to have ssh installed and configured on both machine. If you allowed root to login just from the console, after a regular user get in via ssh, he/she can su to root.
Hope that helps.
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.
Company
Events and news
Customer resources
© Copyright 2025 Hewlett Packard Enterprise Development LP