Jump to content United States-English
HP.com Home Products and Services Support and Drivers Solutions How to Buy
» Contact HP
More options
HP.com home
 HP-UX System Administrator's Guide: Security Management: HP-UX 11i Version 3 > Chapter 3 HP-UX Bastille

File Location
» 

Technical documentation

Complete book in PDF
» Feedback
Content starts here

 » Table of Contents

 » Glossary

 » Index

spacerspacerspacer
spacer
spacer
  		 
 

The following list describes the key HP-UX Bastille files and shows their location:

  • Default configuration file — Contains the answers to the most recently saved session if no other file name was specified:

    /etc/opt/sec_mgmt/bastille/config

  • Configuration log file — A file, which if applied via HP-UX Bastille, locks down the Bastille-relevant items that HP-UX Bastille had completely locked-down in the case where both systems have the same HP-UX version, similar installed-application set, and configuration. In cases where the systems differ, the configuration file may contain extra questions not relevant to the destination system or it could be missing questions needed on the remote system. HP-UX Bastille will inform you in the first case, and in the second case, it will generate an error. It will then give you an opportunity to answer the missing questions or remove the extra ones in the graphical interface.

    /var/opt/sec_mgmt/bastille/log/Assessment/assessment-log.config

  • Error log file — Contains any errors HP-UX Bastille encountered while making changes to the system:

    /var/opt/sec_mgmt/bastille/log/error-log

  • Action log file — Contains the specific steps that HP-UX Bastille performed when making changes to the system:

    /var/opt/sec_mgmt/bastille/log/action-log

  • To-Do list file — Contains the manual actions that remain for the user to perform to ensure the machine is secure:

    /var/opt/sec_mgmt/bastille/TODO.txt

  • Revert actions script — Returns the files that HP-UX Bastille changed to the state they were in before HP-UX Bastille was run:

    /var/opt/sec_mgmt/bastille/revert/revert-actions

    This script is part of the revert feature.

  • To-revert file — Contains the manual actions that must be performed by the user to finish reverting the machine to the state it was in before HP-UX Bastille was run:

    /var/opt/sec_mgmt/bastille/TOREVERT.txt

  • Assessment report files — These files are formatted in HTML, text, and as an HP-UX Bastille log file:

    /var/opt/sec_mgmt/bastille/log/Assessment/assessment-report.HTML

    /var/opt/sec_mgmt/bastille/log/Assessment/assessment-report.txt

    /var/opt/sec_mgmt/bastille/log/Assessment/assessment-report-log.txt

  • Configuration drift file — Contains information about any configuration drift the system had experienced since the last HP-UX Bastille run. This file will only be created when there has been an earlier HP-UX Bastille-configuration applied to the system:

    /var/opt/sec_mgmt/bastille/log/Assessment/Drift.txt



Using HP-UX Bastille to Revert Changes
  		 


Tips and Troubleshooting  
Printable version
Privacy statement Using this site means you accept its terms Feedback to webmaster
© 2008 Hewlett-Packard Development Company, L.P.