Jump to content United States-English
HP.com Home Products and Services Support and Drivers Solutions How to Buy
» Contact HP
More options
HP.com home
 HP-UX System Administrator's Guide: Security Management: HP-UX 11i Version 3

Part II Protecting Data
» 

Technical documentation

Complete book in PDF
» Feedback
Content starts here

 » Table of Contents

 » Glossary

 » Index

spacerspacerspacer
spacer
spacer
  		 
 
Protecting Data

HP-UX 11i offers data protection in many forms: protecting data in transit, in use, and at rest. By using security features designed to protect data in its three forms, HP-UX 11i customers can minimize possible breaches not only in terms of data loss, but in customer trust as well. This section describes the following topics:

Table of Contents

6 File System Security
Controlling File Access
Setting File Access Permissions
Setting File Ownership
Protecting Directories
Protecting Files Related to User Accounts
Locating and Correcting File Corruption Using fsck
Setting Access Control Lists
Using HFS ACLs
HFS ACLs and HP-UX Commands and Calls
Using JFS ACLs
Definition of a JFS ACL
How the System Generates a JFS ACL
Minimal JFS ACL
Additional JFS ACL user and group Entries
JFS ACL group and class Entries
Using the setacl and getacl Commands
Effect of chmod on class Entries
Example of Changing a Minimal JFS ACL
Default JFS ACLs
Changing JFS ACL with the setacl Command
Comparison of JFS and HFS ACLs
JFS and HFS Command and Function Mapping
ACLs and NFS
Security Considerations for /dev Device Special Files
Protecting Disk Partitions and Logical Volumes
Security Guidelines for Mounting and Unmounting File Systems
Controlling File Security on a Network
Check Permission Settings on Network Control Files
Files Mounted in an NFS Environment
7 Compartments
Overview
Compartment Architecture
Default Compartment Configuration
Planning the Compartment Structure
Activating Compartments
Modifying Compartment Configuration
Changing Compartment Rules
Changing Compartment Names
Compartment Components
Compartment Configuration Files
Compartment Commands
Compartment Manpages
Compartment Rules and Syntax
Compartment Definition
File System Rules
IPC Rules
Network Rules
Miscellaneous Rules
Example Rules File
Configuring Applications in Compartments
Troubleshooting Compartments
Using Discover Mode to Generate Initial Compartment Configuration
Compartments in HP Serviceguard Clusters
8 Fine-Grained Privileges
Overview
Fine-Grained Privileges Components
Commands
Manpages
Available Privileges
Configuring Applications with Fine-Grained Privileges
Privilege Model
Compound Privileges
Security Implications of Fine-Grained Privileges
Privilege Escalation
Fine-Grained Privileges in HP Serviceguard Clusters
Troubleshooting Fine-Grained Privileges


Securing Remote Sessions Using HP-UX Secure Shell (SSH)
  		 


Chapter 6 File System Security  
Printable version
Privacy statement Using this site means you accept its terms Feedback to webmaster
© 2008 Hewlett-Packard Development Company, L.P.