Security in HP 9000 - HP UX

Security in HP 9000 - HP UX

Post by Roland Isakss » Fri, 21 Oct 1994 05:19:50



We have HP 9000 - HP UX systems, where we are planning to
implement a security system, but we don't know which and
if it possible to find some kind of security system on
the network, e.g in the GNU project.

The security system shall contains functions like:
  - Preventing a user from changing a password back to
    some of the previously 5 used password.
  - Lock a user out, if he/she has failed three times
    when trying to log in.
  - For some users only allow logins from specified terminals.
  - Issue security alarms to the Superuser.

    etc

Any pointer will be appreciated

Roland Isaksson

 
 
 

Security in HP 9000 - HP UX

Post by Joseph A. Reut » Wed, 26 Oct 1994 09:00:43



>We have HP 9000 - HP UX systems, where we are planning to
>implement a security system, but we don't know which and
>if it possible to find some kind of security system on
>the network, e.g in the GNU project.

[snip]

Check with HP.  There are some security features in HP-UX 8 and 9 which are
only active if you take specific steps to activate them.  Check the System
Administration and System Security manuals that came with your HP distribution
(may be on CD-ROM).  This may not be everything that you want, but you already
paid for it!

--------------------------------------------------------------------------------
Joseph A. Reuter, Wizard-in-Training,

"Olorin I was in my youth in the West that is forgotten."--J. R. R. Tolkien

 
 
 

1. Problems with NFS mount from HP 9000, HP-UX 9.0

Hello there,

We are having some problems mounting disks from HP 9000 systems using NFS
under Linux. Note that this problem does not appear to be the result of the
root being a member of several groups on our Linux machines. They occured for
the first time after we upgraded our server from HP-UX 8.0 to HP-UX 9.0. We
have the following setup:

NFS-Server:
-----------

1) HP 9000/425 running HP-UX 9.0
2) Exports a local disk (/etc/exports):

    /disc/eriss/disc1   -access=...:wijnand:...

   The host "wijnand" is an alias for "wijnand.surf.phys.tue.nl".
3) rpc.mountd is started at boot time from /etc/netnfsrc.

NFS-Clients:
------------
1) PC running Linux from slackware-1.1.1 distribution.
2) The same PC running DOS and using PC-NFS.

When requesting a mount on the client running Linux the rpc.mountd makes
the following entries in the log file:

94.01.07 16:02:14  eriss.su  pid=811    ./rpc.mountd
     rpc.mountd started.
94.01.07 16:04:39  eriss.su  pid=812    ./rpc.mountd
     mount: mount request from wijnand.surf.phys.tue.nl, mounting /disc/eriss/disc1.
94.01.07 16:04:39  eriss.su  pid=812    ./rpc.mountd
     mount: mount request from wijnand.surf.phys.tue.nl denied: Permission denied

Killing rpc.mountd on the server and restarting it does not solve the problem:

94.01.12 09:15:55  eriss.su  pid=27887  /usr/etc/rpc.mountd
     rpc.mountd started.
94.01.12 09:17:24  eriss.su  pid=27888  /usr/etc/rpc.mountd
     mount: mount request from wijnand.surf.phys.tue.nl, mounting /disc/eriss/disc1.
94.01.12 09:17:25  eriss.su  pid=27888  /usr/etc/rpc.mountd
     mount: mount request from wijnand.surf.phys.tue.nl denied: Permission denied

When the PC is rebooted to DOS and the same mount request is given using
PC-NFS, the following entries are logged:

94.01.12 09:19:02  eriss.su  pid=27888  /usr/etc/rpc.mountd
     mount: mount request from wijnand.surf.phys.tue.nl, mounting /disc/eriss/disc1.
94.01.12 09:19:02  eriss.su  pid=27888  /usr/etc/rpc.mountd
     mount: mount request from wijnand.surf.phys.tue.nl denied: Permission denied

After some time the problem does not occur any more when using PC-NFS. As soon
as one tries to mount the disk from Linux again the problem occurs. However,
sometimes the disk can be mounted successfully, typically once every few days.

Does someone know the solution to this problem ?

Thanks in advance !

2. Backspace and Delete in Red Hat 7.0

3. FS $350: HP 9000 712/80 HP/UX (9.03) UNIX RISC Workstation 1.44 flop/32m/SCSI

4. Apache and mod_perl

5. Xmodem on a HP 9000 712/60 running HP-UX 10.20

6. Plz help a newbie

7. Etherneting SCO box to HP-9000 HP-UX box

8. Solaris volcopy(1M) example

9. an HP 9000 hp-ux internals class anyone...

10. FS $350: HP 9000 712/80 HP/UX (9.03) UNIX RISC Workstation 1.44 flop/32m/SCSI

11. Term111 to HP-UX A.09.01 A 9000/720

12. HP-UX 9000/755

13. mount HP-UX 9000