Software Distributor Administration Guide for HP-UX 11i
SD-UX Security
Basic Security Tasks
Chapter 9 269
NOTE Do not change the default secret field unless you have also changed the
default secret on the HP-UX SD-UX controller. These two secrets must
match.
The set of hosts that can be managed by SD-UX can be restricted by
changing the default secret on all SD-UX controller and target hosts in
the network. The default secret is found in
/var/adm/sw/security/secrets.
You may change the default secret found in this file:
default
new secret
For additional information, see “Security Between Hosts: The Shared
Secrets File” on page 289.
Editing an ACL
The swacl command, when invoked without the -M, -D, or -F options,
reads the specified ACL, converts it into plain text and prints it to
stdout. The output of the command can also be redirected to a file,
which can then be printed or edited. After editing, you can use the -F
file
option described above to replace the entire old ACL. This
procedure gives you full ACL editing capabilities.
You must have test permission within the ACL to produce the edit file
(list the ACL) and control permission to modify it with -F, -D, or -M
options. All ACL entries must contain test permission.
If the replacement ACL contains no detectable errors and you have the
proper permission on the ACL, the replacement will succeed. If the
replacement fails because you lack permission to make the change, an
error is generated, and the object is skipped.
You may change or delete existing entries, or you may add additional
entries to the ACL.