Manualshelf

HP-UX Secure Resource Partitions (SRP) A.02.02 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX Containers (SRP)
51525354555657585960
53
Default: 3.0.
Apache data
path
The root directory for Apache data. The cmpt service adds rules to allow the
compartment all access to this directory. Users and processes in the SRP
compartment can read, write, traverse (nsearch), and delete (ulink) the
contents of these directories.
Variable Name: data_path.
Default: /var/hpsrp/srp_name/opt/hpws22/apache.
Apache
executable
path
The root directory for Apache executables. The cmpt service adds rules to allow
the compartment read access to this directory.
Variable Name: exec_path.
Default: /opt/hpws22/apache.
9.1.1.2 Configuration Data
SRP adds entries to the SRP compartment rules file (/etc/cmpt/srp_name.rules) that authorize
access to the exec_path and data_path directories. SRP also adds an include statement to add
the rules from the /opt/hpsrp/etc/cmpt/apache.srp_incl file. As delivered by HP, this file is
empty. You can edit this file to contain compartment rules to be applied when configuring the cmpt
service with the apache template.
9.1.2 The ipfilter Service
The ipfilter service for the apache template adds rules to allow inbound requests to the specified
ports used by the Apache server to pass. You can also specify additional inbound destination TCP
port numbers for IPFilter pass rules.
9.1.2.1 Input Data
SRP prompts for the following data. You can also specify a variable name and value in the command
line, as described in 15.1 Creating an SRP Compartment or Adding Data to an SRP.
Apache HTTP port
number
Specifies the TCP port number on which the compartment Apache server will
receive HTTP requests.
Variable Name: http_port.
Valid Input: A TCP port number in the range 1- 65535.
Default: 80, the IANA registered port number for HTTP.
Apache HTTPS port
number
Specifies the TCP port number on which the compartment Apache server will
receive HTTPS (SSL) requests.
Variable Name: https_port.
Valid Input: A TCP port number in the range 1- 65535.
Default: 443, the IANA registered port number for HTTPS.
Tomcat AJP port
number
Specifies the TCP port number on which the compartment A
pache server will
send requests to a Tomcat server.
Variable Name: ajp_port.
Valid Input: A TCP port number in the range 1- 65535.
Default: 8009.
IPFilter Port
Numbers
Specifies the local TCP port numbers for IPFilter rules that allow inbound
packets.