Login or Register to Ask a Question and Join Our Community


AIX

Fixing security problem

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Operating Systems AIX Fixing security problem
# 1  
Old 07-09-2014
Fixing security problem
Hi

I use Rapid 7 to check some servers ( AIX 5.3 ) for security problems. There are 2 problems I don't know to deal with

1.
Problem : TCP Sequence Number Approximation Vulnerability
Solution :
_Enable TCP MD5 Signature

2.
Problem : HTTP Basic Authentication Enable
Solution :
_ Use Basic Authentication over TLS/SSL (HTTPS)
_ Use Digest Authentication

I don't know how to perform the solutions. Somebody helps please SmilieSmilieSmilie
# 2  
Old 07-09-2014
If I am not mistaken, you asked the same questions about three weeks ago, and I replied to it.

Are you using any application that requires authentication? (like have you installed site minder etc..,) or any secure portal?
Any right tool should tell you to go with HTTPS instead of HTTP.
# 3  
Old 07-09-2014
Quote:
Originally Posted by ibmtech
Are you using any application that requires authentication? (like have you installed site minder etc..,) or any secure portal?
Any right tool should tell you to go with HTTPS instead of HTTP.
Yes, a lot. These servers run applications for banking, and some security guys tell me to fix some security problems. I have fixed most of them, but still don't know what to do with these 2 warnings.

I also checked the "HTTPS" as what you said, it's OK but Rapid 7 still warns like that.Smilie
# 4  
Old 07-10-2014
As a side note AIX 5.3 is out of support since 30. April 2012, see here:

https://www-01.ibm.com/software/support/aix/lifecycle
# 5  
Old 07-10-2014
Quote:
Originally Posted by zaxxon
As a side note AIX 5.3 is out of support since 30. April 2012
Exactly! Consider telling the security guys that talking about "security" when running a OS unpatched for at least 15 months is moot anyway. No matter what you do or don't do the server will be insecure anyway.

I hope this helps.

bakunin
# 6  
Old 07-10-2014
IBM still release security patches for AIX 5.3 but you'll need a software maintenance agreement and an AIX 5.3 service extension to be able to download them ;0)
Login or Register to Ask a Question

Previous Thread | Next Thread

9 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

Help fixing awk code

can someone please help me spot and fix the issue with the following code: awk -F, -v SEARCHPATT="(Wed|Tue)" -v ADDISTR="Mon|Tue|Wed|Thu|Fri|Sat|Sun" -vVF="$VALFOUND" "BEGIN{ {D = D = 1 D = D = 2 } $0 ~ "," VF "," {L = 1 ... (9 Replies)
Discussion started by: SkySmart
9 Replies

2. UNIX for Advanced & Expert Users

Help with fixing screen position

Hey guys, I am trying to make print a pattern with * on a 10*10 two dimensional array in a for loop and I want the incoming 10*10 to overlap the previous 10*10 so that the * look like it is moving. is there a way to fix the screen position? ever time it prints a 10*10 the screen moves. ... (3 Replies)
Discussion started by: amit14august
3 Replies

3. Shell Programming and Scripting

Fixing a shell script

I have this shell script that I wrote to check an input file to see if it is empty or not, and then clean the file from any line that starts with the sign "<" (without quotation marks" and then spell the number of line of the file, and the empty lines, too. The script then will create two output... (11 Replies)
Discussion started by: faizlo
11 Replies

4. Homework & Coursework Questions

Help fixing my database script

1. The problem statement, all variables and given/known data: I need help I get a variant of syntax errors when compiling my script to maintain a database. It's a simple database meant to create/view/maintain vehicles. 2. Relevant commands, code, scripts, algorithms: my if statements have... (5 Replies)
Discussion started by: gamernerd101
5 Replies

5. Shell Programming and Scripting

Awk Problem - Fixing needed

os: sunos/linux shell: bash awk -v PCT="$PERCENTAGE" -v UWARN="$UWARNING" -v UCRIT="$UCRITICAL" 'BEGIN { PCT=PCT+0; UWARN=UWARN+0; UCRIT=UCRIT+0 ; if(PCT<UWARN) { printf \" '${FILESYS}':... (3 Replies)
Discussion started by: SkySmart
3 Replies

6. Shell Programming and Scripting

help fixing awk statement

awk "BEGIN {if($MessageREAD<$ThresholdW) {print \"OK\" ; exit 0} else if(($MessageREAD>=$ThresholdW) && ($MessageREAD<$ThresholdC)) {print \"WARNING\" ; exit 1}" else if($MessageREAD<=$ThresholdC) {print \"CRITICAL\" ;... (4 Replies)
Discussion started by: SkySmart
4 Replies

7. Shell Programming and Scripting

Fixing the width of a word

Is there a way to fix the width of the word being printed to a file? I am trying to create an output to a file with columns , like a spread sheet. I have used "\t" to adjust the columns but still it does not show well in the file, mainly due to the variable length values in the column so \t does... (1 Reply)
Discussion started by: davidtd
1 Replies

8. Linux

fixing with sed

I am trying to replace the value of $f3 but its not working . I don't know what I am missing here . cat dim_copy.20080516.sql | grep -i "create view" | grep -v OPSDM002 | while read f1 f2 f3 f4 f5 f6 f7 f8 f9 do echo " $f3 " sed -e... (13 Replies)
Discussion started by: capri_drm
13 Replies

9. Solaris

Problem fixing e1000gx ni to 100fdx / Solaris 10 / T5220

Hello ! i'm facing an anoying problem during configuration of our new T5220 Enperise server. I've upgarded 'em with a pci-e ethernet expantion card for four additional networkinterfaces using the nxge drivers. i could fix them to 100 fdx rather simple by adding the following settings to the ... (6 Replies)
Discussion started by: moofoo
6 Replies
Login or Register to Ask a Question