Solved

Which hardening in HPUX (trusted security) disabled console CDE login (hourglass stayed there after password entry)

Posted on 2008-10-22
3
829 Views
Last Modified: 2013-12-06
Hi,

I'm not sure what hardening has been done the last few months but
we now faced this problem on our HPUX B11.23 Itanium :
when we login to CDE at console, it gives an hourglass that displays
perpetually.

First,
which process should I kill to release the console GUI - I still have
access from ssh into the servers

second,
what's the hardening change I should reverse so that I don't get
this problem anymore

Third,
my account seem to get suspended easily (I don't think it's due to 3 incorrect
password entry attempts).  anyway, how do I increase the number of allowed
retries for password for an account

I'm running in Trusted mode, ie /etc/shadow does not exist
0
Comment
Question by:sunhux
  • 2
3 Comments
 
LVL 38

Accepted Solution

by:
yuzh earned 500 total points
ID: 22783603
First,
which process should I kill to release the console GUI - I still have
access from ssh into the servers
you need to login as root, to do the followings:
/usr/dt/bin/dtconfig -kill
/usr/dt/bin/dtconfig -e
/usr/dt/bin/dtconfig -reset

man  dtconfig
to learn more deatis.
also have a look at the HP-UX FAQ:
http://www.unixguide.net/hp/faq/
second,
what's the hardening change I should reverse so that I don't get
this problem anymore
You know what you have done, you need to post the details about what you have done to the system.
Third,
my account seem to get suspended easily (I don't think it's due to 3 incorrect
password entry attempts).  anyway, how do I increase the number of allowed
retries for password for an account

have a look at  /etc/default/security file and check AUTH_MAXTRIES, you can also run sam (GUI tool) to check it out.
man security
to learn more details.
0
 

Author Comment

by:sunhux
ID: 22784117
Hardening was done before me
0
 
LVL 38

Assisted Solution

by:yuzh
yuzh earned 500 total points
ID: 22792349
You need to find out the details from logs/doc etc about what had been done for the box, soem one in your IT team might know  something about it.
0

Featured Post

NAS Cloud Backup Strategies

This article explains backup scenarios when using network storage. We review the so-called “3-2-1 strategy” and summarize the methods you can use to send NAS data to the cloud

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
EMC VNX  storage pool  Vs  raid group  question 3 135
unix scripting question 1 97
aix tls version 6 318
Expiration and Locking of Unix/Solaris OS Accounts 7 36
This tech tip describes how to install the Solaris Operating System from a tape backup that was created using the Solaris flash archive utility. I have used this procedure on the Solaris 8 and 9 OS, and it shoudl also work well on the Solaris 10 rel…
Why Shell Scripting? Shell scripting is a powerful method of accessing UNIX systems and it is very flexible. Shell scripts are required when we want to execute a sequence of commands in Unix flavored operating systems. “Shell” is the command line i…
Learn how to get help with Linux/Unix bash shell commands. Use help to read help documents for built in bash shell commands.: Use man to interface with the online reference manuals for shell commands.: Use man to search man pages for unknown command…
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:

810 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question