Manualshelf

HP-UX Workload Manager Toolkits User's Guide

ManualsBrandsHP ManualsSoftwareHP-UX 11i Workload Management (gWLM/WLM) Software
61626364656667686970
HP-UX WLM Oracle Database Toolkit: Providing Database Metrics to WLM
What about security issues?
Chapter 2 61
The smooth tool takes a stream of newline-delimited numbers and
outputs a stream of numbers that are a running average of the last n
values, where n is a value that can be set on the command line. The
principal use for the smooth utility is to remove short spikes or dips in
data collector output used with WLM, but it can be used with any stream
of floating-point numbers.
For more information on this utility, see smooth(1M).
What about security issues?
Be aware of the following security issues so that you can better protect
your data.
Potential password visibility issue
With the wlmoradc utility, if --username and --passwd are used on the
command line so that wlmoradc can connect to an instance, the
username and password are visible via the UNIX ps command.
If this is a problem, place the username and password in an wlmoradc
configuration file, setting them as follows:
$opt_username=”myname/mypassword”;
This data will not be visible via ps. Set the configuration file to be
readable only by root, protecting the integrity of the password.
For information on the wlmoradc configuration file, see wlmoradc(1M).
Potential password visibility/file tampering
With the WLM and wlmoradc configuration files, be careful what
commands are specified, and set the UNIX file permissions
appropriately. In particular, having world write permissions on the file
or placing the file in a world-writable directory could allow other users to
edit or replace the file, causing wlmoradc or WLM to execute the new
commands when it is next invoked.
Also, be sure to set the read permissions to limit access when either of
these files contains a username and password for an instance.