Solved

Which hardening in HPUX (trusted security) disabled console CDE login (hourglass stayed there after password entry)

Posted on 2008-10-22
3
824 Views
Last Modified: 2013-12-06
Hi,

I'm not sure what hardening has been done the last few months but
we now faced this problem on our HPUX B11.23 Itanium :
when we login to CDE at console, it gives an hourglass that displays
perpetually.

First,
which process should I kill to release the console GUI - I still have
access from ssh into the servers

second,
what's the hardening change I should reverse so that I don't get
this problem anymore

Third,
my account seem to get suspended easily (I don't think it's due to 3 incorrect
password entry attempts).  anyway, how do I increase the number of allowed
retries for password for an account

I'm running in Trusted mode, ie /etc/shadow does not exist
0
Comment
Question by:sunhux
  • 2
3 Comments
 
LVL 38

Accepted Solution

by:
yuzh earned 500 total points
ID: 22783603
First,
which process should I kill to release the console GUI - I still have
access from ssh into the servers
you need to login as root, to do the followings:
/usr/dt/bin/dtconfig -kill
/usr/dt/bin/dtconfig -e
/usr/dt/bin/dtconfig -reset

man  dtconfig
to learn more deatis.
also have a look at the HP-UX FAQ:
http://www.unixguide.net/hp/faq/
second,
what's the hardening change I should reverse so that I don't get
this problem anymore
You know what you have done, you need to post the details about what you have done to the system.
Third,
my account seem to get suspended easily (I don't think it's due to 3 incorrect
password entry attempts).  anyway, how do I increase the number of allowed
retries for password for an account

have a look at  /etc/default/security file and check AUTH_MAXTRIES, you can also run sam (GUI tool) to check it out.
man security
to learn more details.
0
 

Author Comment

by:sunhux
ID: 22784117
Hardening was done before me
0
 
LVL 38

Assisted Solution

by:yuzh
yuzh earned 500 total points
ID: 22792349
You need to find out the details from logs/doc etc about what had been done for the box, soem one in your IT team might know  something about it.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
aix tls version 6 217
remove a combination of patterns from a file 15 60
Execute multiple curl cmds with sleep and send output to file 10 88
How to clone solaris 10 machine 33 112
This tech tip describes how to install the Solaris Operating System from a tape backup that was created using the Solaris flash archive utility. I have used this procedure on the Solaris 8 and 9 OS, and it shoudl also work well on the Solaris 10 rel…
Why Shell Scripting? Shell scripting is a powerful method of accessing UNIX systems and it is very flexible. Shell scripts are required when we want to execute a sequence of commands in Unix flavored operating systems. “Shell” is the command line i…
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now