HPE Community
Operating System - HP-UX
1837097 Members
2204 Online
110112 Solutions
New Discussion

SECURITY

 
Nobody's Hero
Valued Contributor

‎07-17-2001 06:24 AM

‎07-17-2001 06:24 AM

SECURITY

I appreciate all the expertise on this site.
Can anyone tell me if there is a security assessment tool for HP9000's. Maybe a type of software that finds weaknesses in the platform, like rhosts files, too many this, not enough of that kind of detail?

Thanks as alyays
Bob
UNIX IS GOOD
0 Kudos
Reply
6 REPLIES 6
Mark van Hassel
Respected Contributor

‎07-17-2001 06:35 AM

‎07-17-2001 06:35 AM

Re: SECURITY

Hi Robert,

Our security group use ESM (Enterprise Security Manager) from axent technology (www.axent.com). I don't think its free though.
The surest sign that life exists elsewhere in the universe is that none of it has tried to contact us
0 Kudos
Reply
Chris Calabrese
Valued Contributor

‎07-17-2001 06:48 AM

‎07-17-2001 06:48 AM

Re: SECURITY

The following come to mind:

COPS (http://ciac.llnl.gov/ciac/ToolsUnixSysMon.html#Cops)

Tiger (http://ciac.llnl.gov/ciac/ToolsUnixSysMon.html#Tiger)

ISS System Security Scanner (www.iss.net)

PentaSafe VigilEnt (www.pentasafe.com)
Brainbench MVP for Unix Administration and Internet Security, SANS Review Editor, and Center for Internet Security HP-UX Benchmark project leader
0 Kudos
Reply
Ralf Hildebrandt
Valued Contributor

‎07-17-2001 08:40 AM

‎07-17-2001 08:40 AM

Re: SECURITY

YOu can use www.nessus.org
Free, easy to use.
Postfix/BIND/Security/IDS/Scanner, you name it...
0 Kudos
Reply
Chris Calabrese
Valued Contributor

‎07-17-2001 09:26 AM

‎07-17-2001 09:26 AM

Re: SECURITY

Nessus is a network-oriented scanner and can only go so far in discovering host vulnerabilities.
Brainbench MVP for Unix Administration and Internet Security, SANS Review Editor, and Center for Internet Security HP-UX Benchmark project leader
0 Kudos
Reply
Michael Tully
Honored Contributor

‎07-17-2001 08:11 PM

‎07-17-2001 08:11 PM

Re: SECURITY

There are some freebies out there:

tiger, satan, cops & crack & iss.
ESM is a very good one but is definitely
not free.

Some of these are avaiilable from:

http://www.deter.com/unix/#unix

HTH
Michael
Anyone for a Mutiny ?
0 Kudos
Reply
Brian Markus
Valued Contributor

‎07-29-2001 09:29 PM

‎07-29-2001 09:29 PM

Re: SECURITY

I was truly impressed with Nessus, however the Nessus deamon had a bug in it a while back that allowed some nasty things to be done with the server. Put it behind a firewall, then do an internal audit. It's almost to powerful, if you build a Nessus box, keep it heavly guarded. Oh, and pray the script kiddies out there on the net don't get a hold of this tool. Our live's will be a nightmare.


Brian.
When a sys-admin say's maybe, they don't mean 'yes'!
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.