04-03-2007
/etc/security/user file in AIX
Dear Gurus,
Can the /etc/security/user file be edit manually in AIX.
I would like to change the histsize in the default. Currently is set to 0.
Please advise whether i can just edit it manually, whether it would cause any harm?
thank You Very much.
10 More Discussions You Might Find Interesting
1. UNIX for Advanced & Expert Users
Is there any way to revoke some IP address to connect to my AIX server 4.3.3.0 with telnet session?
Please help... (2 Replies)
Discussion started by: eyounes
2 Replies
2. UNIX for Advanced & Expert Users
Need urgent help!!!
Hi,
I have an application that runs under a regular unix ID 'prod1'. I want to disable direct login for 'prod1' via ssh or telnet. But I do want some users to be able to su to prod1 and do application maintainence tasks. How can I accomplish that?
Also the above scnerio is... (5 Replies)
Discussion started by: sajjad02
5 Replies
3. AIX
Hello,
My first post to the Unix forums, thanks for having me!
The division of the company I work for uses a xseries/redhat/VMWareServer
solution to make sure that we keep hardware overhead low and use our machines to as near capacity as we can. These boxes are Intel with usually
dual or... (1 Reply)
Discussion started by: greenteabagger
1 Replies
4. AIX
Hello, does anyone have experience with setting up IP Security Filter Rules on AIX 5.2? We need the ability to block access to a certain ip address from our development server and the thought was to configure a rule with AIX. It appears simple and straight forward, but I wanted to get some other... (0 Replies)
Discussion started by: zuessh
0 Replies
5. AIX
Dears
Security users in AIX don’t have permission to change the group of the user thru Smitty Users
When they try to change the group of the users to any group they'll get permission denied
Security profile in Smitty :
User... (10 Replies)
Discussion started by: ITHelper
10 Replies
6. AIX
Hi Guy's
Just I want to know the default settings of security password in AIX there is some changes happened in my machine when I try to change my password I'm getting this message
Changing password for "root"
root's New password:
a minimum of 1 elapsed week between changes.... (1 Reply)
Discussion started by: Mr.AIX
1 Replies
7. AIX
In AIX 5.3 tech level 11:
I want to setup a default password policy to have at least one
of each of the following: alpha character, numeric character, and "special"
character ("!", "&", etc).
The smitty Security and Users --> Passwords --> System Password
Policy screen only offers "MIN... (2 Replies)
Discussion started by: kikwit_phil
2 Replies
8. AIX
Recently the network auditor found a security hole at port 50000. The port 50000 is used by db2.
When I enter command "netstat -Aan |grep 50000", it showed some established connections and are all db2 processes.
I have asked the application team and they answered that the port 50000 connection... (2 Replies)
Discussion started by: skeyeung
2 Replies
9. AIX
Hello,
I've set up email alerts on AIX Servers. so that i can get email notifications (via mail relay server) when ever there is abnormal behavior.
for example
1) my script monitors CPU/disk/memory etc... when it reaches high water ark, it will send an email alert.
2) disk usage alerts
3)... (5 Replies)
Discussion started by: System Admin 77
5 Replies
10. Cybersecurity
I'm searching for COMPREHENSIVE ID management security guideline to manage user administration in my current job. I couldn't find it online or the books that could help.
What I need to know:
User security directories and how to use it.
How user should be managed.
How the standard user... (0 Replies)
Discussion started by: blinkingdan
0 Replies
LEARN ABOUT OSF1
secsetup
secconfig(8) System Manager's Manual secconfig(8)
NAME
secconfig, secsetup - Security features setup graphical interface (Enhanced Security)
SYNOPSIS
/usr/sbin/sysman secconfig
NOTE: The secsetup utility has been replaced by the secconfig graphical interface.
DESCRIPTION
The utility is a graphical interface used to select the level of system security needed. It can convert from Base to enhanced security
mode, and configure base and enhanced security features. If you are using secconfig to enable Enhanced security, you must first have
loaded the enhanced security subsets.
You can run while the system is in multiuser mode. However, if you change the security level, the change is not completed until you reboot
the system.
For both base and enhanced security, the secconfig utility allows you to enable segment sharing, to enable access control lists (ACLs), and
to restrict the setting of the execute bit to root only.
For enhanced security, the secconfig utility additionally allows you to configure security support from simple shadow passwords all the way
to a strict C2 level of security. Shadow password support is an easy method for system administrators, who do not wish to use all of the
extended security features, to move each user's password out of /etc/passwd and into the extended user profile database (auth.db. You can
use the Custom mode if you wish to select additional security features, such as breakin detection and evasion, automatic database trimming,
and password controls.
When converting from base to enhanced security, secconfig updates the system default database (/etc/auth/system/default) and uses the con-
vuser utility to migrate user accounts.
While it is possible to convert user accounts from enhanced back to base, the default encryption algorithms and supported password lengths
differ between base and enhanced security, and thus user account conversions do not succeed without a password change.
NOTE: Because of the page table sharing mechanism used for shared libraries, the normal file system permissions are not adequate to protect
against unauthorized reading. The secconfig interface allows you to disable segment sharing. The change in segment sharing takes effect
at the next reboot.
FILES
RELATED INFORMATION
acl(4), authcap(4), default(4), convuser(8),
Security delim off
secconfig(8)