security vulnerabilities related to HP-UX 11.0

James Ellis_1 · ‎09-01-2004

Anyone know where the HP Website lists the vulnerabilities related to HP-UX 11.0 or the patches? I have not found it here, but I would assume HP does have documentations on security vulnerabilities. Can anyone point me to where it is on the website?

Thanks.

"In the middle of difficulty lies opportunity" -Einstein

Sridhar Bhaskarla · ‎09-01-2004

Hi James,

http://us-support2.external.hp.com/common/bin/doc.pl

In the above itrc patch site, run assessment for Custom Patch Bundles. There you can create an assessment profile where you can select the type of patches you want to include in that profile. Security patches and Critical fixes are also included in the options.

-Sri

You may be disappointed if you fail, but you are doomed if you don't try

Jeff Schussele · ‎09-01-2004

Hi James,

Here's the HP Security bulletins archive:

http://www1.itrc.hp.com/service/ciss/doLogin.do?TargetPage=http%3A%2F%2Fwww1.itrc.hp.com%2Fservice%2Fcki%2FsecBullArchive.do%3Fadmit%3D-682735245%2B1094061068314%2B28353475

Note - you'll need an ITRC login to access.

Here's Security patch matrix that will contain up-to-date patch IDs.

http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=hpuxSecurityMatrix

HTH,
Jeff

PERSEVERANCE -- Remember, whatever does not kill you only makes you stronger!

Bill Hassell · ‎09-01-2004

It's probab;ly easier to just download the security_patch_check program and let it create the list specific to your machine. The patches will list vulnerabilities that have already been fixed (assuming you have all the security patches installed). Now the term vulnerabilities covers a lot of areas. telnet is commonly used but is considered to be a vulnerability on networks that can be traced. The fix is to stop the telnet service and use SSH instead. This isn't a patch situation though since not having telnet may mean no network access to the system.

Since there are many decisions (after patching for security holes) that need to be made, I would recommend downloading Bastille (you'll need an Xwindow display device) which will describe features and workarounds for many network services. You'll find both security_patch_check and Bastille at http://software.hp.com

Bill Hassell, sysadmin

R. Sri Ram Kishore_1 · ‎09-01-2004

Hi James,

Take a look at this site:
http://archives.neohapsis.com/archives/hp/

Regards,
Sri Ram

"What goes up must come down. Ask any system administrator."

Categories

Company

Local Language

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Discussions

Forums

Forums

Discussions

Forums

Discussions

Forums

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Community

Resources

Other HPE Sites

Discussions

Forums

Blogs

security vulnerabilities related to HP-UX 11.0

security vulnerabilities related to HP-UX 11.0

Re: security vulnerabilities related to HP-UX 11.0

Re: security vulnerabilities related to HP-UX 11.0

Re: security vulnerabilities related to HP-UX 11.0

Re: security vulnerabilities related to HP-UX 11.0