Hp Ux Auditing System Extensions Administrators Guide Administrator's

2015-03-28

• HP-UX System Administrator's Guide: Security Management
• Table of Contents
• About this Document
• Part I Protecting Systems
  • 1 Installing the HP-UX Operating Environment Securely
    • 1.1 Installation Security Considerations
    • 1.2 Preventing Security Breaches During the Boot Process
    • 1.3 Enable Login Security for root
    • 1.4 Using Boot Authentication to Prevent Unauthorized Access
    • 1.5 Setting Install-Time Security Options
    • 1.6 Installing Security Patches
    • 1.7 Postinstallation Security Tips for Backup and Recovery
  • 2 Administering User and System Security
    • 2.1 Managing User Access
      • 2.1.1 Monitoring User Accounts
      • 2.1.2 Monitoring Guest Accounts
      • 2.1.3 Creating Application User Accounts
      • 2.1.4 Managing Group Accounts
    • 2.2 Authenticating Users During Login
      • 2.2.1 Explanation of the Login Process
      • 2.2.2 Checking the login Tracking Files (btmp and wtmp)
        • 2.2.2.1 Last Command Examples
      • 2.2.3 Checking Who Is Logged In
    • 2.3 Authenticating Users with PAM
      • 2.3.1 Overview
      • 2.3.2 PAM Libraries
      • 2.3.3 Systemwide Configuration Using /etc/pam.conf
      • 2.3.4 Sample /etc/pam.conf File
      • 2.3.5 The /etc/pam_user.conf User Configuration File
      • 2.3.6 Examples: How PAM Works for Login
    • 2.4 Managing Passwords
      • 2.4.1 System Administrator Responsibilities
      • 2.4.2 User Responsibilities
      • 2.4.3 Criteria of a Good Password
      • 2.4.4 Changing the /etc/passwd Password File
        • 2.4.4.1 Examples of passwd Commands
        • 2.4.4.2 The /etc/passwd File Format
      • 2.4.5 The /etc/shadow Shadow Password File
      • 2.4.6 Eliminating Pseudo-Accounts and Protecting Key Subsystems in /etc/passwd
      • 2.4.7 Secure Login with HP-UX Secure Shell
      • 2.4.8 Securing Passwords Stored in NIS
      • 2.4.9 Securing Passwords Stored in LDAP Directory Server
    • 2.5 Defining System Security Attributes
      • 2.5.1 Configuring Systemwide Attributes
      • 2.5.2 Configuring Per-User Attributes
        • 2.5.2.1 Examples of Defining User-Specific Attributes with userdbset
        • 2.5.2.2 INACTIVITY_MAXDAYS and the Shadow Password File
      • 2.5.3 Troubleshooting the User Database
    • 2.6 Handling setuid and setgid Programs
      • 2.6.1 Why setuid and setgid Programs Can Be Risky
      • 2.6.2 How IDs Are Set
      • 2.6.3 Guidelines for Limiting Setuid Power
    • 2.7 Preventing Stack Buffer Overflow Attacks
    • 2.8 Protecting Unattended Terminals and Workstations
      • 2.8.1 Controlling Access Using /etc/inittab and Run Levels
      • 2.8.2 Protecting Terminal Device Files
      • 2.8.3 Configuring the Screen Lock
        • 2.8.3.1 Configuring the TMOUT Variable
        • 2.8.3.2 Configuring the CDE Lock Manager
    • 2.9 Protecting Against System Access by Remote Devices
      • 2.9.1 Controlling Access Using /etc/dialups and /etc/d_passwd
    • 2.10 Securing Login Banners
    • 2.11 Protecting the root Account
      • 2.11.1 Monitoring root Account Access
      • 2.11.2 Using the Restricted SMH Builder for Limited Superuser Access
      • 2.11.3 Reviewing Superuser Access
  • 3 HP-UX Standard Mode Security Extensions
    • 3.1 Overview
    • 3.2 Security Attributes and the User Database
      • 3.2.1 System Security Attributes
      • 3.2.2 Configuring Systemwide Attributes
      • 3.2.3 User Database Components
        • 3.2.3.1 Configuration Files
        • 3.2.3.2 Commands
        • 3.2.3.3 Attributes
        • 3.2.3.4 Manpages
      • 3.2.4 Configuring Attributes in the User Database
      • 3.2.5 Troubleshooting the User Database
  • 4 Remote Access Security Administration
    • 4.1 Overview of Internet Services and Remote Access Services
      • 4.1.1 Securing ftp
      • 4.1.2 Securing Anonymous ftp
      • 4.1.3 Denying Access Using /etc/ftpd/ftpusers
      • 4.1.4 Other Security Solutions for Spoofing
    • 4.2 The inetd Daemon
      • 4.2.1 Securing inetd
        • 4.2.1.1 Denying or Allowing Access Using /var/adm/inetd.sec
    • 4.3 Protection Against Spoofing with TCP Wrappers
      • 4.3.1 Additional Features of TCP Wrappers
      • 4.3.2 TCP Wrappers Do Not Work with RPC Services
    • 4.4 Secure Internet Services
    • 4.5 Controlling an Administrative Domain
      • 4.5.1 Verifying Permission Settings on Network Control Files
    • 4.6 Securing Remote Sessions Using HP-UX Secure Shell (SSH)
      • 4.6.1 Key Security Features of HP-UX Secure Shell
      • 4.6.2 Software Components of HP-UX Secure Shell
      • 4.6.3 Running HP-UX Secure Shell
        • 4.6.3.1 Running the ssh Client
        • 4.6.3.2 Running the sftp Client
        • 4.6.3.3 Running the scp Client
      • 4.6.4 HP-UX Secure Shell Privilege Separation
      • 4.6.5 HP-UX Secure Shell Authentication
        • 4.6.5.1 GSS-API
        • 4.6.5.2 Public Key Authentication
        • 4.6.5.3 Host-Based and Public Key Authentication
        • 4.6.5.4 Password Authentication
      • 4.6.6 Communication Protocols
      • 4.6.7 HP-UX Secure Shell and the HP-UX System
      • 4.6.8 Associated Technologies
      • 4.6.9 Strong Random Number Generator Requirement
      • 4.6.10 TCP Wrappers Support
      • 4.6.11 chroot Directory Jail
• Part II Protecting Data
  • 5 File System Security
    • 5.1 Controlling File Access
      • 5.1.1 Setting File Access Permissions
      • 5.1.2 Setting File Ownership
      • 5.1.3 Protecting Directories
      • 5.1.4 Protecting Files Related to User Accounts
      • 5.1.5 Locating and Correcting File Corruption Using fsck
    • 5.2 Setting Access Control Lists
    • 5.3 Using HFS ACLs
      • 5.3.1 HFS ACLs and HP-UX Commands and Calls
    • 5.4 Using JFS ACLs
      • 5.4.1 Definition of a JFS ACL
      • 5.4.2 How the System Generates a JFS ACL
      • 5.4.3 Minimal JFS ACL
      • 5.4.4 Additional JFS ACL user and group Entries
      • 5.4.5 JFS ACL group and class Entries
      • 5.4.6 Using the setacl and getacl Commands
      • 5.4.7 Effect of chmod on class Entries
      • 5.4.8 Example of Changing a Minimal JFS ACL
      • 5.4.9 Default JFS ACLs
      • 5.4.10 Changing JFS ACL with the setacl Command
        • 5.4.10.1 Using the Modify and Delete Options
        • 5.4.10.2 Using the -f Option
        • 5.4.10.3 Effective Permissions and setacl -n
    • 5.5 Comparison of JFS and HFS ACLs
      • 5.5.1 JFS and HFS Command and Function Mapping
    • 5.6 ACLs and NFS
    • 5.7 Security Considerations for /dev Device Special Files
    • 5.8 Protecting Disk Partitions and Logical Volumes
    • 5.9 Security Guidelines for Mounting and Unmounting File Systems
    • 5.10 Controlling File Security on a Network
      • 5.10.1 Check Permission Settings on Network Control Files
      • 5.10.2 Files Mounted in an NFS Environment
        • 5.10.2.1 Server Vulnerability
        • 5.10.2.2 Client Vulnerability
        • 5.10.2.3 How to Safeguard NFS-Mounted Files
  • 6 Compartments
    • 6.1 Overview
      • 6.1.1 Compartment Architecture
      • 6.1.2 Default Compartment Configuration
    • 6.2 Planning the Compartment Structure
    • 6.3 Compartment Components
      • 6.3.1 Compartment Configuration Files
      • 6.3.2 Compartment Commands
      • 6.3.3 Compartment Manpages
    • 6.4 Compartment Rules and Syntax
      • 6.4.1 Compartment Definition
      • 6.4.2 File System Rules
      • 6.4.3 IPC Rules
      • 6.4.4 Network Rules
      • 6.4.5 Miscellaneous Rules
      • 6.4.6 Example Rules File
    • 6.5 Configuring Compartments
      • 6.5.1 Activating Compartments
      • 6.5.2 Defining a Compartment Configuration
        • 6.5.2.1 Changing Compartment Rules
        • 6.5.2.2 Changing Compartment Names
      • 6.5.3 Running an Application in a Compartment
      • 6.5.4 Login Directly to a Compartment
    • 6.6 Troubleshooting Compartments
    • 6.7 Using Discover Mode to Generate Initial Compartment Configuration
    • 6.8 Compartments in HP Serviceguard Clusters
  • 7 Fine-Grained Privileges
    • 7.1 Overview
    • 7.2 Fine-Grained Privileges Components
      • 7.2.1 Commands
      • 7.2.2 Manpages
    • 7.3 Available Privileges
      • 7.3.1 Compatibility Information for Divided Privileges
    • 7.4 Configuring Applications with Fine-Grained Privileges
      • 7.4.1 Privilege Model
      • 7.4.2 Compound Privileges
    • 7.5 Security Implications of Fine-Grained Privileges
      • 7.5.1 Privilege Escalation
    • 7.6 Fine-Grained Privileges in HP Serviceguard Clusters
    • 7.7 Troubleshooting Fine-Grained Privileges
• Part III Protecting Identity
  • 8 HP-UX Role-Based Access Control
    • 8.1 Overview
    • 8.2 Access Control Basics
      • 8.2.1 Simplifying Access Control with Roles
    • 8.3 HP-UX RBAC Components
      • 8.3.1 HP-UX RBAC Access Control Policy Switch
      • 8.3.2 HP-UX RBAC Configuration Files
      • 8.3.3 HP-UX RBAC Commands
      • 8.3.4 HP-UX RBAC Manpages
      • 8.3.5 HP-UX RBAC Architecture
      • 8.3.6 HP-UX RBAC Example Usage and Operation
    • 8.4 Planning the HP-UX RBAC Deployment
      • 8.4.1 Planning the Roles
      • 8.4.2 Planning Authorizations for the Roles
      • 8.4.3 Planning Command Mappings
      • 8.4.4 HP-UX RBAC Limitations and Restrictions
    • 8.5 Configuring HP-UX RBAC
      • 8.5.1 Configuring Roles
        • 8.5.1.1 Creating Roles
        • 8.5.1.2 Assigning Roles to Users
        • 8.5.1.3 Assigning Roles to Groups
      • 8.5.2 Configuring Authorizations
      • 8.5.3 Configuring Additional Command Authorizations and Privileges
      • 8.5.4 Configuring HP-UX RBAC with Fine-Grained Privileges
      • 8.5.5 Configuring HP-UX RBAC with Compartments
    • 8.6 Using HP-UX RBAC
      • 8.6.1 Using the privrun Command to Run Applications with Privileges
        • 8.6.1.1 HP-UX RBAC in Serviceguard Clusters
      • 8.6.2 Using the privedit Command to Edit Files Under Access Control
      • 8.6.3 Customizing privrun and privedit Using the ACPS
      • 8.6.4 Generating Keystroke and Command Logs
        • 8.6.4.1 Keystroke Logging
        • 8.6.4.2 Alternate Logging
    • 8.7 Troubleshooting HP-UX RBAC
      • 8.7.1 The rbacdbchk Database Syntax Tool
      • 8.7.2 privrun -v Information
  • 9 Audit Administration
    • 9.1 Auditing Components
      • 9.1.1 Commands
      • 9.1.2 Audit Configuration Files
      • 9.1.3 Audit Manpages
    • 9.2 Auditing Your System
      • 9.2.1 Planning the Auditing Implementation
      • 9.2.2 Enabling Auditing
      • 9.2.3 Disabling Auditing
      • 9.2.4 Monitoring Audit Files
      • 9.2.5 Performance Considerations
      • 9.2.6 Guidelines for Administering the Auditing System
    • 9.3 Auditing Users
    • 9.4 Auditing Events
    • 9.5 Audit Trails
      • 9.5.1 Configuring Audit Trails
      • 9.5.2 Monitoring and Managing Audit Trails
    • 9.6 Using the Audit Filtering Tools
    • 9.7 Using filter.conf
    • 9.8 Using the Audit Reporting Tools
      • 9.8.1 Examples of Using the auditdp Command
    • 9.9 Viewing Audit Logs
      • 9.9.1 Examples of Using the audisp Command
    • 9.10 Self-Auditing
    • 9.11 HP-UX RBAC Auditing
      • 9.11.1 Auditing Based on HP-UX RBAC Criteria and the /etc/rbac/aud_filter File
      • 9.11.2 Procedure for Auditing HP-UX RBAC Criteria
• A Trusted Systems
  • A.1 Setting Up a Trusted System
  • A.2 Auditing a Trusted System
  • A.3 Managing Trusted Passwords and System Access
    • A.3.1 Password Files
      • A.3.1.1 The /etc/passwd File
      • A.3.1.2 The /tcb/files/auth/ Database
    • A.3.2 Password Selection and Generation
    • A.3.3 Password Aging
    • A.3.4 Password History and Password Reuse
    • A.3.5 Time-Based Access Control
    • A.3.6 Device-Based Access Control
    • A.3.7 Manipulating the Trusted System Databases
  • A.4 Guidelines for Trusted Backup and Recovery
• B Other Security Products
  • B.1 Protecting Systems
    • B.1.1 HP-UX Bastille
    • B.1.2 HP-UX HIDS
    • B.1.3 HP-UX IPFilter
    • B.1.4 Security Patches
  • B.2 Protecting Data
    • B.2.1 HP-UX Containers (SRP)
    • B.2.2 HP-UX Encrypted Volume and File System (EVFS)
    • B.2.3 HP-UX IPSec
    • B.2.4 HP-UX OpenSSL
    • B.2.5 HP-UX Secure Shell
    • B.2.6 HP-UX Trusted Computing Services
    • B.2.7 HP-UX Whitelisting
  • B.3 Protecting Identity
    • B.3.1 HP-UX AAA Server (RADIUS)
    • B.3.2 HP-UX Directory Server
    • B.3.3 HP-UX LDAP-UX Integration
• Glossary
• Index