Manualshelf

HP-UX 11i Version 2 March 2004 Release Notes

ManualsBrandsHP ManualsSoftwareHP-UX 11i v2 Foundation OE LTU
31323334353637383940
What’s New at a Glance
What’s New in the Initial HP-UX 11i v2 Release?
Chapter 3
39
•The nslookup Program: Extended to follow the configured host name resolution
algorithm and to query NIS, DNS, and host tables.
Router Discovery Protocol Daemon (rdpd): Obsolete. Functionality has been
subsumed in gated.
Web Browsing:
Mozilla Application Suite 1.2.1: Added as default browser for HP-UX 11i v2.
Netscape 7: Replaces Netscape Communicator 4.79.
Chapter 7: “Security”
1
Boot Authentication: Now available on all Standard Systems. Standard Mode Boot
Authentication feature can be configured by two parameters.
Generic Security Service Application Programming Interface (GSS-API): Now
delivered as part of HP-UX 11i v2. IPv6 enabled.
HP-UX Auditing System: Several system call options and event type options are
accepted, but will be obsoleted in the next release.
HP-UX Bastille 2.1: Now included in HP-UX 11i v2. New version adds finer
granularity of configuration, improved question flow, better input validation, and
new lockdown features.
HP-UX Host Intrusion Detection System (HIDS) 2.2: Maintenance release with
defect fixes and a few enhancements. No new functionality in this version.
HP-UX IPFilter A.03.05.06: Supports HP-UX 11i v2 on Itanium-based platforms.
Automatically installed with all OEs. Using IPFilter and ServiceGuard requires
specific IPFilter rules to ensure proper operation of ServiceGuard clusters.
HP-UX Secure Shell A.03.10: New product. Based on OpenSSH 3.1p1, provides a
secure channel for remote communication by transparently encrypting network
traffic. Uses hashing to ensure data integrity and supports several authentication
methods.
Install-Time Security 1.0: Adds a security step to the install/update process that
allows you to configure the Bastille security lockdown engine during system
installation.
Kerberos Client (KRB5-Client): Now delivered as part of HP-US 11i v2. Changes
include support for appdefaults section in the /etc/krb5.conf; multidomain
support; IPv6 support.
PAM Kerberos: Supports both Itanium and PA-RISC applications in 32-bit mode.
Now prevents a user from changing another user’s password.
Security Patch Check 1.3: Now included in HP-UX 11i v2 OEs. Simplifies the process
of determining whether you have all the relevant security patches on your system.
This version does better corner-case handling; incorporates a number of defect fixes
and clearer wording.
Shadow Passwords: New feature enhances system security by hiding user-encrypted
passwords in a shadow password file.
1. The following summaries refer to the initial (October 2003) HP-UX 11i Version 2
Release Notes.