I would like to perform a security audit on our SCO Unix system.
Are there any documentation or resources available on the net to help me
Thanks in advance,
Either way, consider replacing it. Keeping a SCO box around on your
network is like leaving a Solaris 2.5.1 box online. :)
Paul Day Web: www.bur.st/~bonfire GPG Key ID: 2EF4ED23
Look for "The UNIX Auditor's Practical Handbook" in www.nii.co.in
Also read (it's Linux, but contains common sense) the "Linux Administrator
Security Guide" in www.seifried.org
Finally, consider using some vulnerability scanner like Nessus
(www.nessus.org) to make your life easier.
"El nivel de conocimientos adquiridos es
inversamente proporcional a la temperatura del cafe"
We are looking for software tools designed to review the security of Unix or
Dec computers by using a stand alone PC. Key files from the Unix or Dec would
be obtained and loaded onto the PC and then used in conjunction with the
audit software. We have been made aware of two such packages, PC Unix Audit and
PC Dec Audit, marketed by a firm called Trillion Software. Have you heard of
this software? Has anyone else heard of it and does anyone know of other
similar packages that may be available on the market?