Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Allowing External Scans
Top Forums UNIX for Dummies Questions & Answers Allowing External Scans Post 302961698 by hpuxguy on Wednesday 2nd of December 2015 02:26:49 PM
Old 12-02-2015
HP Allowing External Scans
Hello!

I run an HP Unix system which I host oracle databases on, as well as oracle based apps used by my company. My IA department needs to scan my files to ensure I am following IA procedures and check for vulnerabilities in scripts etc. The scan is coming from corporate, and they asked for root access initially to scan the entire file system with. I denied the request and instead offered an account in the root group, but not with the permissions. I do not have the ability to change files or mkdir or even touch a file with the account, but am not sure I did it right. I am not an expert in the area, and am looking for a better way to accomplish this, or perhaps enhance what I have done. They will want to run the scan once a week, so having the account disable on a time schedule would be great too.

Any thoughts? Anyone done this before? Thanks!!! SmilieSmilie
 

8 More Discussions You Might Find Interesting

1. Programming

allowing members of a group to kill a process

I've written a python program where I want to allow members of a specific group the ability to kill it, and I'm not sure how to do it. I've been looking at the setuid() and setgid() and similar functions in the os module, but haven't been able to get them to work. I can't seem to change the uid or... (1 Reply)
Discussion started by: vastcharade
1 Replies

2. Red Hat

Need help in allowing symmetric cryptography[2]

I have encountered some problems in my school work. Here is the question: The server that provides the time synchronization must be configured to allow its clients to verify its authenticity using symmetric cryptography. Much Appreciated!:) (1 Reply)
Discussion started by: wilsonljx
1 Replies

3. Homework & Coursework Questions

Need help in allowing symmetric cryptography[2]

The server that provides the time synchronization must be configured to allow its clients to verify its authenticity using symmetric cryptography. 4. Singapore Polytechnic, Dover, Singapore,Mr Kam, and Computer Engineering I don't think there is any coding since it is just configuring... (3 Replies)
Discussion started by: wilsonljx
3 Replies

4. UNIX and Linux Applications

Allowing recursion into rsyncd module directories

Hello, I am wondering if it is possible to allow rescursion into rsyncd modules. For example, I have a module set up like the following: path = /home/backup write only = yes read only = no auth users = backup secrets file =... (1 Reply)
Discussion started by: tay9000
1 Replies

5. Red Hat

Samba for anonymouse setup but not allowing me to write

Hi Friends, samba for annonymouse setup but not allowing me to write when i tried to browse from windows 7 box conf as below #testparm Load smb config files from /etc/samba/smb.conf Processing section "" Processing section "" Processing section "" Loaded services file OK. Server... (0 Replies)
Discussion started by: heman96
0 Replies

6. Cybersecurity

IP Tables not allowing ports

Hi guys, I'm trying to configure iptables to only allow certain ports access. I set the first set of rules to block everything and then subsequently open ports as needed, but everything still seems to be blocked. I have read that the order matters (new to iptables), perhaps this is an issue.... (6 Replies)
Discussion started by: 3therk1ll
6 Replies

7. AIX

Ssh not allowing NIS user to login

As I do a ssh <nis_user>@server1 from server2, ssh prompts for certificates (as expected the first time), then it prompts for the users password, as soon as I enter the password, I get a Connection to server1 closed by remote host, and connection to server1 closed. and I disconnect back to the... (3 Replies)
Discussion started by: mrmurdock
3 Replies

8. UNIX for Advanced & Expert Users

One user to su to another without allowing root access and password

Hello Gurus, I want One user to su to another without allowing root access and password. I want to run a specific command as below from user am663: --------------------------------------------------------- sudo -u appsprj4 /home/appsrj4/scripts/start_apache.sh ------------------- But... (6 Replies)
Discussion started by: pokhraj_d
6 Replies

LEARN ABOUT DEBIAN

knocker

KNOCKER(1)						      General Commands Manual							KNOCKER(1)

NAME

       knocker - An easy to use network security port scanner

SYNOPSIS

       knocker --host <host> [OPTION]

DESCRIPTION

       knocker	is  a  simple  and easy to use TCP security port scanner written in C using pthreads which is able to analyze hosts and all of the
       different services started on them.

OPTIONS

       -H, --host
	      host name or numeric Internet address to scan

       -P, --port
	      port number to scan (single port scan only)

       -SP, --start-port
	      port number to begin the scan from

       -EP, --end-port
	      port number to end the scan at

       --last-host
	      uses the last scanned host as target

       --last-scan
	      performs again the last port scan

       -q, --quiet
	      disable console output and logs to file.

       -lf, --logfile <logfile>
	      log the results to a specified file.

       -nf, --no-fency
	      disable fency output

       -nc, --no-colors
	      disable colored output

       --configure
	      let the user configure knocker

       -h, --help
	      display this help and exit

       -v, --version
	      output version information and exit

EXAMPLES

       To run this program the standard way type:

       knocker --host 192.168.0.1

       If you want to specify a port range to scan:

       knocker --host thehost  --start-port 1 --end-port 2600

       or

       knocker -H thehost  -SP 1 -EP 2600

       To scan a single port:

       knocker -H thehost --port 21

       To run this program not using colors (if your terminal does not support colors):

       knocker --host 192.168.0.1 --no-colors

       To run this program run in background and have the results written in a log file:

       knocker --host 192.168.0.1 --quiet &

AVAILABILTY

       The latest version of this program can be found at http://knocker.sourceforge.net

BUGS

       See the BUGS file in the knocker source package for a list of known bugs.  Report bugs to <g.gabriele79@genie.it>

AUTHOR

       knocker is written by Gabriele Giorgetti <g.gabriele79@genie.it>

COPYRIGHT

       Copyright (C) 2001,2002 Gabriele Giorgetti
       This is free software; see the source for copying conditions.  There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICU-
       LAR PURPOSE.

								   MAY 24, 2002 							KNOCKER(1)
All times are GMT -4. The time now is 11:07 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy