Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS)

S-187: HP-UX Running the Ignite-UX or the DynRootDisk (DRD) Vulnerabilities

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Security Advisories (RSS) S-187: HP-UX Running the Ignite-UX or the DynRootDisk (DRD) Vulnerabilities
# 1  
Old 02-15-2008
S-187: HP-UX Running the Ignite-UX or the DynRootDisk (DRD) Vulnerabilities
A potential security vulnerability has been identified in HP-UX running the Ignite-UX or the DynRootDisk (DRD) get_system_info command. This command can change system networking parameters without notification (unqualified configuration change). The risk is MEDIUM.


More...
Login or Register to Ask a Question

Previous Thread | Next Thread

6 More Discussions You Might Find Interesting

1. HP-UX

Ignite

Hi Does anybody know how to get hold of a very old (A.3.7.n) copy of the ignite software depot for HP-UX 10.20? (7 Replies)
Discussion started by: gregsih
7 Replies

2. HP-UX

What is the difference between DRD and Root Mirror Disk using LVM mirror ?

what is the difference between DRD and Root Mirror Disk using LVM mirror ? (3 Replies)
Discussion started by: maxim42
3 Replies

3. HP-UX

Ignite - make_net_recovery

I've read the Ignite User/Admin Guide but I'm having trouble figuring out if I can do a make_net_recovery if the ignite server and client server are on completely different networks? If this can be done is there any special configuration? If I initiate the command from the server it looks like it... (3 Replies)
Discussion started by: gonzotonka
3 Replies

4. HP-UX

Ignite and HP-UX 09.XX

I am looking to make bootable tape backups of four machines running HP-UX 09.02, 09.05 and 09.07. I successfully located Ignite 10.20 and installed it and made a backup on the one machine running HP-UX 10.20. I am having trouble locating information about Ignite for HP-UX 9. Does it exist? Is... (3 Replies)
Discussion started by: whack_job
3 Replies

5. HP-UX

Need Ignite for HP-UX 10.20

Hello All, I need to bring down our old 9000 series d350, but my supervisor wants an ignite backup created. I cannot find ignite in the usual places (/opt/ignite) nor can I find it in swlist. As far as I can tell the cd's are long gone. Is there anywhere else I could look for ignite being... (6 Replies)
Discussion started by: stay0ut
6 Replies

6. HP-UX

HP-UX Ignite server

Sorry if this has been asked and answered, but I can't find this particual problem. I've had an Ignite server running for years on a small internal network with images we load on daily basis. Tried to load two servers, L2000 and C3600 , both with same problem. # boot lan.192.168.2.2 install ... (0 Replies)
Discussion started by: ddeblance
0 Replies
Login or Register to Ask a Question

LEARN ABOUT HPUX

slweb

slweb(1M)																 slweb(1M)

NAME

       slweb - start the HP-UX hardware event viewer tool (a Web interface)

SYNOPSIS

       Path:

DESCRIPTION

       The HP-UX hardware event viewer tool (slweb) can be used to display hardware events from log files or raw hexadecimal word pairs.

       The  command  starts the user interface.  Once started the help facility of is available and can be used to learn more about by clicking on
       field labels or column headings.

       The HP-UX hardware event viewer tool user interface uses a Web browser.	Executing the command without any options performs  the  following
       tasks:

	      o  create server certificates if needed

	      o  start the management Web server if it is not running

	      o  start a Web client (browser)

       An  attempt  will  be  made to connect to a Netscape Web browser running on the X server defined by the DISPLAY environment variable.  If a
       running Netscape client is found, it will be used, otherwise a new Netscape session will be initiated.  This will only happen if  the  Net-
       scape process is running the same system as that referenced by the DISPLAY variable, unless the option is used.

       If  is  executed without any options, the server will stop automatically after a period of inactivity.  If the server is started explicitly
       using it will run until the system is rebooted or the server is stopped with

   Options
       The recognizes the following options:

       Display events on a remote system (
		      hostname), using a client on the local system.  The Web server on the remote system must already be running.

       Forces a client browser to be used in less secure ways.
		      Two security features are overridden by the option.

		      The option forces the client browser to be used or started, even if the X-traffic between  the  X-server	and  the  Netscape
		      browser is not secure.

		      If  is  executed	by privileged user with the option, a temporary login bypass key will be generated.  The bypass key allows
		      the user to access the Web interface without having to provide login information again.

		      Only use this option if you are sure the network traffic between the host where Netscape is running, and	the  host  in  the
		      DISPLAY variable is secure.

       Forces the creation of new server certificates.
		      This  can  be  performed	if  the server's certificates expire, or if the security of the certificates has been compromised.
		      When new certificates are created, the command will also restart the slweb Web server.

		      The option is only available to the because it requires creation of an SSL certificate.

       The	      option is only available to the

		      stops the running slweb
				     Web server.

		      starts the slweb
				     Web server, if started this way, it will run until rebooted or until stopped with

		      displays the status of the slweb
				     Web server.

		      stops and then starts (
				     the slweb Web server.

   Security Certificates
       will generate an SSL certificate authority and use that to sign a generated SSL certificate.  Because this certificate is self signed, your
       web  browser  will  probably prompt you to see if you want to accept this certificate before it connects to the HP-UX hardware event viewer
       application.

       It is possible to accept these certificates each time, just for the session, or you can accept the certificates on a  permanent	basis  (10
       years), and not have to accept them again later.

       regenerates the certificates when they are not there, if the hostname is changed on the system, or when the option is used.

   Online Help
       Once the HP-UX hardware event viewer is started, the online help provides details on how to use the tool.

RETURN VALUES

       Upon completion, returns one of the following values:

       Successful.

       An error occurred.

WARNINGS

       Accepting a certificate saves an identifier for the certificate in a file where the browser is running.	If you reinstall the gui, the cer-
       tificate will be altered, and some browsers report the change in id as a potential security violation.

       When this happens, you have to instruct your browser to delete the saved certificate.  On Netscape 4.7x this is done by selecting the  menu
       pick.  On the resulting dialog box, select the " area and delete any certificates for machine associated with the security violation.

AUTHORS

       slweb was developed by Hewlett-Packard

REFERENCES

       See the "privileges" man page for more information on the

																	 slweb(1M)