Manualshelf

Safe and Powerful: Security in HP-UX System Management Homepage (SMH)

ManualsBrandsHP ManualsSoftwareHP-UX System Administration
45678910111213
11
For more information about Bastille, see the bastille(1M) manpage, and the Bastille User
Guide available at /opt/sec_mgmt_bastille/docs/user_guide.txt.
Securely maintaining SMH Tips
Here are some tips for maintaining a secure SMH environment:
Limit the number of root users.
Regularly review system and SMH logs.
Always logout of an SMH session. SMH automatically logs out the user if there is no
activity for the session timeout period, 15 minutes being the default period. It can be
changed to a value suitable for your security policy.
Closely monitor changes in critical SMH files (via HIDS or Tripwire).
Follow a good patch strategy. You can do the following:
Run SWA regularly or use your HP RSAA to provide patch analyses.
Perform reactive patching critical security issues.
Perform proactive patching every six months.
SMH (HP-UX) depends on system installed Apache, Tomcat, PHP and OpenSSL. If
there is any vulnerability reported for these products then you must upgrade the
Apache suite (hpuxwsAPACHE) installation.
Conduct periodic security audits.
Bastille Drift reports.
Nesssus and/or nmap scans.
HP WebInspect scans.
Report any vulnerabilities found back to HP.
Use the native web browser on a local system to invoke SMH (SSL will be used). Do not
set the X-Windows DISPLAY variable on the HP-UX system to create the display on your
local desktop the information, including password information will cross the network in
the clear. You must use the -F option to open the tools in an unsecure manner.
SMH documentation
For more information about SMH, see the following sources:
HP System Management Homepage Release Notes The release notes provide
documentation for what's new with the release, features and change notifications, system
requirements, and known issues. The release notes are available on the HP Technical
Documentation website at http://docs.hp.com.
HP System Management Homepage Help System The help system provides a set of
documentation for using, maintaining, and troubleshooting SMH. In SMH, go to the Help
menu.
HP System Management Homepage Installation Guide The installation guide
provides information about installing and getting started using SMH. It includes an
introduction to basic concepts, definitions, and functionality associated with SMH. The