Manualshelf

Security Management Guide (G06.29+, H06.08+, J06.03+)

ManualsBrandsHP ManualsServerHP NonStop G-Series
31323334353637383940
Guardian System Security
Security Management Guide 522283-021
2 - 9
Licensing System Files
of a Trojan horse for the legitimate file. For more information, see Trojan Horses on
page 7-17.
Because purge capability might be needed for the RESTORE program, you can
provide a copy of RESTORE with PROGID set to the super ID. Restrict this copy so
only super-group users have EXECUTE authority.
Licensing System Files
The security administrator should be aware of every licensed file.
A program containing privileged code must be licensed if it is to be executed by users
other than the super ID. Only the super ID can license a program or revoke its license.
Several system programs that HP distributes (for example, FUP and PASSWORD)
must be licensed before they can be executed by users other than the super ID.
Only trusted programs should be licensed. Files distributed by HP are trusted such that
they comply with the security requirements of the operating system.
Setting System Files to PROGID
Normally you should not run system programs as PROGID programs. Possible
exceptions to this rule involve copies of the BACKUP and RESTORE programs.
Default Security for User Files
Determine default security for user files on a user-by-user basis. Such assignments
should be consistent with your organization’s policies.
The safest (and most restrictive) approach in the Guardian environment is to
set all
user defaults to local owner only for all permissions (that is, OOOO). Then only
deliberate action can make a new file available to users other than the owner, the
owner’s group manager, or the super ID.
Checking Default Security
Issue the USERS command to check a user’s default security setting. You might find
security settings that allow newly created files to be examined and possibly modified.
You might also find default security strings in violation of your organization’s policy. For
example, consider the output of this USERS command:
1> USERS SUPER.*
GROUP . USER I.D. # SECURITY DEFAULT VOLUMEID
.
.
.
Note. The program DIVER will be licensed by default to allow the super user group to bring
down a CPU using DIVER. If a customer wants to restrict the usage of DIVER only to super ID
user then they should explicitly revoke the license of DIVER object file using the command:
FUP REVOKE $SYSTEM.SYSnn.DIVER