f



AIX security

Hi,

I would like to harden some of our AIX boxes. What are all I need to
do for this.

And here we use "rexec" for executing some of the programs. How can we
avoid this. Is there any alternate secure way for this.

Please suggest me.

Best Regards
Siva.
0
haisiva (13)
7/10/2003 10:57:10 PM
comp.unix.aix 10963 articles. 1 followers. drkirkby (98) is leader. Post Follow

2 Replies
426 Views

Similar Articles

[PageSpeed] 51

haisiva@yahoo.com (Krishna) writes:

> Hi,
> 
> I would like to harden some of our AIX boxes. What are all I need to
> do for this.
> 
> And here we use "rexec" for executing some of the programs. How can we
> avoid this. Is there any alternate secure way for this.

SSH is something you should start becoming familiar with. It's a
replacement for all of the insecure r- commands. 

There's a book on SSH the secure shell published by O'Reilly and
Associates.  http://www.snailbook.com/

-- 
Todd H.
http://www.toddh.net/
0
comphelp (872)
7/11/2003 3:55:33 AM
Definetly use SSH and turn off ftp and telnet.

In addition, you might want to consider installing the Trusted Computing
Base, but this requires a reinstall of AIX.

Turn of any services that you aren't using (like tftp, nfs, etc.).

Disable/delete any accounts that aren't currently being used.

Limit root access (possibly use 'sudo') and turn on accounting.

These are very general guidelines and it really depends on what the box is
used for and what applications are running on it...

On Thu, 10 Jul 2003 22:55:33 -0500, Todd H. wrote:

> haisiva@yahoo.com (Krishna) writes:
> 
>> Hi,
>> 
>> I would like to harden some of our AIX boxes. What are all I need to
>> do for this.
>> 
>> And here we use "rexec" for executing some of the programs. How can we
>> avoid this. Is there any alternate secure way for this.
> 
> SSH is something you should start becoming familiar with. It's a
> replacement for all of the insecure r- commands. 
> 
> There's a book on SSH the secure shell published by O'Reilly and
> Associates.  http://www.snailbook.com/

0
email5379 (4)
7/11/2003 3:07:52 PM
Reply:

Similar Artilces:

US-TX-Austin: Application Developer-AIX, AIX, UNIX; 7M (45304457606)
US-TX-Austin: Application Developer-AIX, AIX, UNIX; 7M (45304457606) ==================================================================== Position: Application Developer-AIX Reference: MKL00780 Location: Austin TX Duration: 7M Skills: AIX UNIX Scope: Unix AIX preferred system admin skills and experience. Experience configuring all types of servers, storage and networks. Excellent written communication skills must be able to clearly describe a problem and resolution status Flexibl...

US-TX-Austin: Application Developer-AIX, AIX, UNIX; 7M (45304432405)
US-TX-Austin: Application Developer-AIX, AIX, UNIX; 7M (45304432405) ==================================================================== Position: Application Developer-AIX Reference: MKL00780 Location: Austin TX Duration: 7M Skills: AIX UNIX Scope: Unix AIX preferred system admin skills and experience. Experience configuring all types of servers, storage and networks. Excellent written communication skills must be able to clearly describe a problem and resolution status Flexible schedule must...

US-TX-Austin: Application Developer-AIX, AIX, UNIX; 7M (45304132401)
US-TX-Austin: Application Developer-AIX, AIX, UNIX; 7M (45304132401) ==================================================================== Position: Application Developer-AIX Reference: MKL00780 Location: Austin TX Duration: 7M Skills: AIX UNIX Scope: Unix AIX preferred system admin skills and experience. Experience configuring all types of servers, storage and networks. Excellent written communication skills must be able to clearly describe a problem and resolution status Flexible schedule must be able to work 1st or 2nd shift any day of the week . Self-started no time for OJT. Extra points TCP IP, Oracle, DB2 database admin, complex networks. Please send your current resume in confidence to "Karen Lehman" <klehman@eurosoft-inc.com> ..45304132401. ...

US-TX-Austin: Application Developer-AIX, AIX, UNIX; 7M (45304732416)
US-TX-Austin: Application Developer-AIX, AIX, UNIX; 7M (45304732416) ==================================================================== Position: Application Developer-AIX Reference: MKL00780 Location: Austin TX Duration: 7M Skills: AIX UNIX Scope: Unix AIX preferred system admin skills and experience. Experience configuring all types of servers, storage and networks. Excellent written communication skills must be able to clearly describe a problem and resolution status Flexible schedule must be able to work 1st or 2nd shift any day of the week . Self-started no time for OJT. Extra points TCP IP, Oracle, DB2 database admin, complex networks. Please send your current resume in confidence to "Karen Lehman" <klehman@eurosoft-inc.com> ..45304732416. ...

US-TX-Austin: Application Developer-AIX, AIX, UNIX; 7M (45304132401)
US-TX-Austin: Application Developer-AIX, AIX, UNIX; 7M (45304132401) ==================================================================== Position: Application Developer-AIX Reference: MKL00780 Location: Austin TX Duration: 7M Skills: AIX UNIX Scope: Unix AIX preferred system admin skills and experience. Experience configuring all types of servers, storage and networks. Excellent written communication skills must be able to clearly describe a problem and resolution status Flexibl...

US-TX-Austin: Application Developer-AIX, AIX, UNIX; 7M (45304732416)
US-TX-Austin: Application Developer-AIX, AIX, UNIX; 7M (45304732416) ==================================================================== Position: Application Developer-AIX Reference: MKL00780 Location: Austin TX Duration: 7M Skills: AIX UNIX Scope: Unix AIX preferred system admin skills and experience. Experience configuring all types of servers, storage and networks. Excellent written communication skills must be able to clearly describe a problem and resolution status Flexibl...

US-TX-Austin: Application Developer-AIX, AIX, UNIX; 7M (45303583160)
US-TX-Austin: Application Developer-AIX, AIX, UNIX; 7M (45303583160) ==================================================================== Position: Application Developer-AIX Reference: MKL00780 Location: Austin TX Duration: 7M Skills: AIX UNIX Scope: Unix AIX preferred system admin skills and experience. Experience configuring all types of servers, storage and networks. Excellent written communication skills must be able to clearly describe a problem and resolution status Flexibl...

US-TX-Austin: Application Developer-AIX, AIX, UNIX; 7M (45304157603)
US-TX-Austin: Application Developer-AIX, AIX, UNIX; 7M (45304157603) ==================================================================== Position: Application Developer-AIX Reference: MKL00780 Location: Austin TX Duration: 7M Skills: AIX UNIX Scope: Unix AIX preferred system admin skills and experience. Experience configuring all types of servers, storage and networks. Excellent written communication skills must be able to clearly describe a problem and resolution status Flexibl...

US-TX-Austin: Application Developer-AIX, AIX, UNIX; 7M (45304132401)
US-TX-Austin: Application Developer-AIX, AIX, UNIX; 7M (45304132401) ==================================================================== Position: Application Developer-AIX Reference: MKL00780 Location: Austin TX Duration: 7M Skills: AIX UNIX Scope: Unix AIX preferred system admin skills and experience. Experience configuring all types of servers, storage and networks. Excellent written communication skills must be able to clearly describe a problem and resolution status Flexibl...

US-TX-Austin: Application Developer-AIX, AIX, UNIX; 7M (45304432405)
US-TX-Austin: Application Developer-AIX, AIX, UNIX; 7M (45304432405) ==================================================================== Position: Application Developer-AIX Reference: MKL00780 Location: Austin TX Duration: 7M Skills: AIX UNIX Scope: Unix AIX preferred system admin skills and experience. Experience configuring all types of servers, storage and networks. Excellent written communication skills must be able to clearly describe a problem and resolution status Flexibl...

US-TX-Austin: Application Developer-AIX, AIX, UNIX; 7M (45303832413)
US-TX-Austin: Application Developer-AIX, AIX, UNIX; 7M (45303832413) ==================================================================== Position: Application Developer-AIX Reference: MKL00780 Location: Austin TX Duration: 7M Skills: AIX UNIX Scope: Unix AIX preferred system admin skills and experience. Experience configuring all types of servers, storage and networks. Excellent written communication skills must be able to clearly describe a problem and resolution status Flexible schedule must be able to work 1st or 2nd shift any day of the week . Self-started no time for OJT. Extra points TCP IP, Oracle, DB2 database admin, complex networks. Please send your current resume in confidence to "Karen Lehman" <klehman@eurosoft-inc.com> ..45303832413. ...

putenv for AIX and ifdef for AIX
I have read several posts about putenv is not Standard C. But I'm wondering if anyone knows if it is available in AIX. All of our other platforms (linux (32 and 64 bit), sgi, hpux, x86, darwin (intel and mac), interix and sun) behave properly for our application. We found that if we run this command prior to running the application, it works correctly: set LDR_CNTRL=MAXDATA=0x80000000;export LDR_CNTRL Our problem is that we start a parent process that spawns the child application. If we set the LDR_CNTRL=MAXDATA prior to starting the parent process, other child applications are failing. Our initial solution is to have wrap around child application that sets the environmental variable and then spawns an additional child. This environmental variable would only be set if the the operating system is AIX. Second question, does anyone know the correct #ifdef statement to check for AIX, is it: #ifdef __AIX__ I'm a very very green C programmer! Thanks Rick ClownPleco wrote: > I have read several posts about putenv is not Standard C. But I'm > wondering if anyone knows if it is available in AIX. All of our other > platforms (linux (32 and 64 bit), sgi, hpux, x86, darwin (intel and > mac), interix and sun) behave properly for our application. We found > that if we run this command prior to running the application, it works > correctly: > > set LDR_CNTRL=MAXDATA=0x80000000;export LDR_CNTRL > > Our problem is that we start a pa...

Unix AIX
What is the best way to clear semaphores and shared memory, sometimes we run those ipcs and ipcrm commands but some of them do not go away and the server hangs, i would apprecaite a list of commands for unix aix, we are on version 6.1 Thanks!! SAPUNIX wrote: > What is the best way to clear semaphores and shared memory, sometimes > we run those ipcs and ipcrm commands but some of them do not go away > and the server hangs those who do not go away, are they really not in use anymore? In comp.unix.aix, Sven Mascheck <mascheck@email.invalid> wrote: >SAPUNIX wrote: >> What is the best way to clear semaphores and shared memory, sometimes >> we run those ipcs and ipcrm commands but some of them do not go away >> and the server hangs > >those who do not go away, are they really not in use anymore? My experience is if they don't go away from properly formatted ipcs / ipcrm commands, it's because they're tied to processes which are hung waiting on kernel threads (and basically, defunct). In which case you need to kill the owning process (which is already dead, and which probably won't respond to a kill -9 since it's stuck in a kernel thread) or reboot the box. SAP is the worst offender in this regard IME. It's the only app I've ever known people have to constantly clear down shared memory / semaphores for when it doesn't shut down cleanly. -- Tony Evans Saving trees and wasting electrons since 1993 blog...

Difference between HP Unix and Unix AIX
What are the difference between HP Unix and HP AIX at command line ??? Is there any ? dlprogress wrote: > What are the difference between HP Unix and HP AIX at command line ??? > Is there any ? > > Unless you're getting into system dependent stuff, no, there's no real difference. However, one real difference is that AIX is an IBM and not an HP product. -- Fletcher Glenn ...

putenv for AIX and ifdef for AIX
I have read several posts about putenv is not Standard C. But I'm wondering if anyone knows if it is available in AIX. All of our other platforms (linux (32 and 64 bit), sgi, hpux, x86, darwin (intel and mac), interix and sun) behave properly for our application. We found that if we run this command prior to running the application, it works correctly: set LDR_CNTRL=MAXDATA=0x80000000;export LDR_CNTRL Our problem is that we start a parent process that spawns the child application. If we set the LDR_CNTRL=MAXDATA prior to starting the parent process, other child applications are faili...

US-MI-Auburn Hill: AIX Eng., 3-5yrs exp., UNIX, AIX, Applied Engineering; 3M (45335257604)
US-MI-Auburn Hill: AIX Eng., 3-5yrs exp., UNIX, AIX, Applied Engineering; 3M (45335257604) ========================================================================================== Position: AIX Eng. Reference: SMC01843 Location: Auburn Hill MI Duration: 3M Skills: UNIX 3-5 YEARS exp AIX Applied Engineering Requirements determination Scope: Taking requirements from AIX servers, developing Build documentation and creating work orders. Please send your current resume in confidence to <staffing@eurosoft-inc.com> ..45335257604. ...

US-MI-Auburn Hill: AIX Eng., 3-5yrs exp., UNIX, AIX, Applied Engineering; 3M (45334314407)
US-MI-Auburn Hill: AIX Eng., 3-5yrs exp., UNIX, AIX, Applied Engineering; 3M (45334314407) ========================================================================================== Position: AIX Eng. Reference: SMC01843 Location: Auburn Hill MI Duration: 3M Skills: UNIX 3-5 YEARS exp AIX Applied Engineering Requirements determination Scope: Taking requirements from AIX servers, developing Build documentation and creating work orders. Please send your current resume in c...

US-MI-Auburn Hill: AIX Eng., 3-5yrs exp., UNIX, AIX, Applied Engineering; 3M (45333732408)
US-MI-Auburn Hill: AIX Eng., 3-5yrs exp., UNIX, AIX, Applied Engineering; 3M (45333732408) ========================================================================================== Position: AIX Eng. Reference: SMC01843 Location: Auburn Hill MI Duration: 3M Skills: UNIX 3-5 YEARS exp AIX Applied Engineering Requirements determination Scope: Taking requirements from AIX servers, developing Build documentation and creating work orders. Please send your current resume in c...

US-MI-Auburn Hill: AIX Eng., 3-5yrs exp., UNIX, AIX, Applied Engineering; 3M (45335814410)
US-MI-Auburn Hill: AIX Eng., 3-5yrs exp., UNIX, AIX, Applied Engineering; 3M (45335814410) ========================================================================================== Position: AIX Eng. Reference: SMC01843 Location: Auburn Hill MI Duration: 3M Skills: UNIX 3-5 YEARS exp AIX Applied Engineering Requirements determination Scope: Taking requirements from AIX servers, developing Build documentation and creating work orders. Please send your current resume in c...

US-MI-Auburn Hill: AIX Eng., 3-5yrs exp., UNIX, AIX, Applied Engineering; 3M (45335214407)
US-MI-Auburn Hill: AIX Eng., 3-5yrs exp., UNIX, AIX, Applied Engineering; 3M (45335214407) ========================================================================================== Position: AIX Eng. Reference: SMC01843 Location: Auburn Hill MI Duration: 3M Skills: UNIX 3-5 YEARS exp AIX Applied Engineering Requirements determination Scope: Taking requirements from AIX servers, developing Build documentation and creating work orders. Please send your current resume in c...

US-MI-Auburn Hill: AIX Eng., 3-5yrs exp., UNIX, AIX, Applied Engineering; 3M (45335232407)
US-MI-Auburn Hill: AIX Eng., 3-5yrs exp., UNIX, AIX, Applied Engineering; 3M (45335232407) ========================================================================================== Position: AIX Eng. Reference: SMC01843 Location: Auburn Hill MI Duration: 3M Skills: UNIX 3-5 YEARS exp AIX Applied Engineering Requirements determination Scope: Taking requirements from AIX servers, developing Build documentation and creating work orders. Please send your current resume in c...

US-MI-Auburn Hill: AIX Eng., 3-5yrs exp., UNIX, AIX, Applied Engineering; 3M (45335557608)
US-MI-Auburn Hill: AIX Eng., 3-5yrs exp., UNIX, AIX, Applied Engineering; 3M (45335557608) ========================================================================================== Position: AIX Eng. Reference: SMC01843 Location: Auburn Hill MI Duration: 3M Skills: UNIX 3-5 YEARS exp AIX Applied Engineering Requirements determination Scope: Taking requirements from AIX servers, developing Build documentation and creating work orders. Please send your current resume in c...

US-MI-Auburn Hill: AIX Eng., 3-5yrs exp., UNIX, AIX, Applied Engineering; 3M (45334357603)
US-MI-Auburn Hill: AIX Eng., 3-5yrs exp., UNIX, AIX, Applied Engineering; 3M (45334357603) ========================================================================================== Position: AIX Eng. Reference: SMC01843 Location: Auburn Hill MI Duration: 3M Skills: UNIX 3-5 YEARS exp AIX Applied Engineering Requirements determination Scope: Taking requirements from AIX servers, developing Build documentation and creating work orders. Please send your current resume in c...

US-MI-Auburn Hill: AIX Eng., 3-5yrs exp., UNIX, AIX, Applied Engineering; 3M (45334914409)
US-MI-Auburn Hill: AIX Eng., 3-5yrs exp., UNIX, AIX, Applied Engineering; 3M (45334914409) ========================================================================================== Position: AIX Eng. Reference: SMC01843 Location: Auburn Hill MI Duration: 3M Skills: UNIX 3-5 YEARS exp AIX Applied Engineering Requirements determination Scope: Taking requirements from AIX servers, developing Build documentation and creating work orders. Please send your current resume in c...

Web resources about - AIX security - comp.unix.aix

Krebs on Security
The House Financial Services Committee is slated to hold a hearing this Friday on the impact of cyber heists against small- to mid-sized businesses. ...

Security Middle East - Latest news from the Middle East.
Security Middle East is a news portal for the entire security industry, focussed specifically on latest security news from the Middle East. Security ...

Information Security News, IT Security News & Expert Insights: SecurityWeek.Com
IT Security News and Information Security News, Cyber Security, Network Security, Enterprise Security Threats, Cybercrime News and more. Information ...

Security (finance) - Wikipedia, the free encyclopedia
equity securities, e.g., common stocks ; and, The company or other entity issuing the security is called the issuer . A country's regulatory ...

Belgian nuclear guard shot and security access badge stolen, according to media reports
Two days after bomb attacks at Brussels airport and on a packed metro killed 31 people and injured hundreds, a security guard who worked at a ...

Brussels 'march against fear' called off after security concerns
Organisers have cancelled a march in Brussels that was meant to show defiance to last week's bomb attacks, after senior officials urged people ...

Samsung Galaxy S7 Edge receiving April security update in Korea
Samsung has begun to roll-out the latest Android Security Patch for the Galaxy S7 Edge in South Korea. The update, which clocks in at just over ...

Is Appleā€™s reluctance to implement a bug bounty program a security risk?
... it's Google handing out $12,000 to a former employee who managed to purchase the Google.com domain name or Facebook paying $15,000 to a security ...


Recently patched security flaw bypassed OS X's new defenses
Theoretically, the System Integrity Protection introduced in OS X El Capitan makes it very hard to completely compromise a Mac. The feature prevents ...

Resources last updated: 3/27/2016 12:38:23 AM