Jump to content United States-English
HP.com Home Products and Services Support and Drivers Solutions How to Buy
» Contact HP
More options
HP.com home
HP-UX Virtual Partitions Administrator’s Guide > Chapter 2 How vPars and Its Components Work

Security

» 

Technical documentation

Complete book in PDF
» Feedback
Content starts here

 » Table of Contents

 » Glossary

 » Index

You should be aware of the following security issues and solutions:

  • The vPars commands (as described in “vPars Monitor and Shell Commands”) are restricted to root access, but the commands work on any of the virtual partitions, regardless of which partition the commands are executed from. Therefore, a user with the appropriate privileges on one partition can affect another virtual partition by targeting the virtual partition in a vPars command. For example, a root user running on the partition vpar2 can reset the partition vpar3 using the vparreset command.

    To minimize such interactions, use the vPars Flexible Administrative Capability. With this feature, you can assign vPars administration capabilities to designated virtual partitions. Only superusers within the designated virtual partitions can affect other virtual partitions; a superuser within a non-designated virtual partition can perform only operations that affect itself. For more information, see the Chapter 11: “vPars Flexible Administrative Capability”.

  • A user with access to the console can gain access to the file systems on any of the virtual partitions in the hard partition. To prevent this, control access to the physical console or GSP.

NOTE: A white paper on using RBAC (Role-based Access Control) with vPars A.04.xx and A.05.xx is available at :

http://docs.hp.com/en/vse.html#Virtual%20Partitions

Printable version
Privacy statement Using this site means you accept its terms Feedback to webmaster
© 2008 Hewlett-Packard Development Company, L.P.