Manualshelf

Managing Systems and Workgroups: A Guide for HP-UX System Administrators

ManualsBrandsHP ManualsSoftwareHP-UX 11i v1.6 Technical Computing (TCOE) LTU
971972973974975976977978979980
Configuring HP-UX Bastille: Interview
Bastille Configuration Questions and Explanations for HP-UX
Appendix B974
NOTE: This is applicable only for non-root users and only for services
which use the "login" binary for authentication.
Account Security Q: Enter the maximum number of logins per user [1]
The NUMBER_OF_LOGINS_ALLOWED parameter controls the number of
simultaneous logins allowed per user. This is applicable only for non-root
users. This may be useful in limiting the sharing of user accounts and
alerting users to a compromised account.
NUMBER_OF_LOGINS_ALLOWED=0 Any number of logins are allowed per user.
NUMBER_OF_LOGINS_ALLOWED=N N number of logins are allowed per user.
NOTE: This is applicable only for non-root users and only for services
which use the "login" binary for authentication.
NOTE: Reasonable values are small and should always be less than 1000.
Account Security Q: Do you want to set a default path for the su command? [N]
The SU_DEFAULT_PATH parameter defines a new default PATH
environment value to be set when su to a non-super-user account is
done. Refer to su(1).
This ensures that a su session will always have a default PATH value,
preventing the inheritance of a poisoned PATH variable from your current
login session.
The PATH environment variable is set to new_PATH when the su command
is invoked. Other environment values are not changed. The path value
is not validated. This parameter does not apply to a superuser account,
and is applicable only when the "-" option is not used along with su
command.
Account Security Q: Enter the new PATH upon su [/sbin:/usr/sbin:/bin:/usr/bin]
The SU_DEFAULT_PATH parameter defines a new default PATH
environment value to be set when su to a non-super-user account is
done. Refer to su(1).
SU_DEFAULT_PATH=new_PATH
This ensures that a su session will always have a default PATH value,
preventing the inheritance of a poisoned PATH variable from you current
login session.
The PATH environment variable is set to new_PATH when
the su command is invoked. Other environment values are
not changed. The path value is not validated. This