Open System Services Management and Operations Guide (G06.30+, H06.08+, J06.03+)
telnet (a TACL TELNET
command exists for the
Guardian environment)
nfsdfinger (a TACL FINGER
command exists for the
Guardian environment)
tftpdntpdftpd
tippasswdfsck
ulimitphfsirand
usermodpgpgetstats
/usr/etc/exportfs orquotidentd
/usr/etc/showmountrcpin.named
vipwrcs orlast
• The following environment variables:
maxuproc
nfs_portmon
• The /bin/sh -r restricted shell option
• For the inetd program:
-t tracing option◦
◦ Service of systat for port 11
Some of these commands and utilities can provide mechanisms that intruders can use to compromise
system security or integrity.
Guardian environment equivalents of ftpd and nfsd provide access to the OSS environment and
security management of related activities occurs through Guardian environment tools. See the
ftpserver(7) reference page either online or in the Open System Services Shell and Utilities
Reference Manual for information about the equivalent of the File Transfer Protocol (FTP) demon;
information about the administration of anonymous FTP users can be found in “Configuring FTP
Access” (page 203). See the manual set available for the Network File System (NFS) for Open
System Services product.
The OSS environment provides the following tools and utilities:
loggerat
namedatq, and
named-xferatrm
rshcron
sumcrontab
walldf
xargsdu
User and Group Security in the OSS Environment
The OSS environment does not provide the following predefined or generic user names (accounts):
rootingresagent
systemlpbin
telnetmaildaemon
toormaintdemo
uucpmanagerfinger
visitornewsftp
whonobodygames
nuucpguest
.openhelp
The OSS environment does not provide the UNIX predefined or generic group name: wheel
220 Managing Security