HP-UX: Security I

About this class

Contents of this class

system and network security loopholes in a typical UNIX system from the hacker's perspective. It introduces a variety of tools and techniques for defending against such potential security breaches.

Who will the lesson benefit?

Experienced UNIX system and network administrators who need to understand and prevent security threats to their systems

What prerequisites are required

• HP-UX System and Network Administration I (H3064S) and HP-UX System and Network Administration II
• HP-UX System and Network Administration for Experienced System Administrators
• or equivalent experience

Contents of this class

• Introduction - Corporate security risks, Areas of computer security, Changes in computing environments, Overview of UNIX security
• How hackers gain access to a target system: Software vulnerabilities
• How hackers gain privelages: Unsecured passwords.
• How hackers gain privileges: Unsecured user accounts.
• Solution: Securing UNIX file systems.
• Solution: monitoring activity with SMSE auditing.
• How hackers exploit backdoors.
• How hackers exploit internet service vulnerabilities.
• Solution: hardening HP-UX hosts with bastille.
• How hackers perform damaging tasks.
• How hackers exploit NFS vulnerabilities.
• Solution: scanning for vulnerabilities with Nessus.
• Solution: configuring IPFilter firewalls.
• How hackers gather information about a target system.
• How hackers gain access to a target system: Unsecured teminals
• Solution: Configuring SMSE user security.
• Solution: Configuring Role Based Access Control (RBAC).
• How hackers monitor and hide system activity.
• Solution: monitoring suspicious activity with HIDS.
• How hackers exploit TCP/IP vulnerabilities.
• Solution: scanning for vulnerabilities with Nessus.
• Solution: configuring IPFilter firewalls.
• Solution: improving user and password security with trusted systems.
• How hackers exploit internet service vulnerabilities.
• Solution: hardening HP-UX hosts with bastille.