Solved

aixpert and /etc/shadow

Posted on 2013-06-12
3
1,523 Views
Last Modified: 2013-06-12
We are running some security tools over an AIX IBM System. When you have run the AIX IBM aixpert report, any idea where the actual report ends up? And in what format?

Also my admin is telling me there is no \etc\shadow file on the System? Is that even possible? Or could it be that due to the permissions they are logged onto the System that they cant see the \etc\shadow file?
0
Comment
Question by:pma111
  • 2
3 Comments
 
LVL 68

Accepted Solution

by:
woolmilkporc earned 500 total points
Comment Utility
Hi,

aixpert writes all the successfully applied rules to

/etc/security/aixpert/core/appliedaixpert.xml

and the corresponding "undo" action rules to

/etc/security/aixpert/core/undo.xml

The format is XML.

You must use the "-o" flag of aixpert to set name and location of the file containing the security output.

If the AUDIT subsystem is enabled you can use the "-p" flag of aixpert to log the rules
processed into the audit subsystem.

And indeed, there is no /etc/shadow file on AIX.

The shadow file equivalent on AIX is /etc/security/passwd
0
 
LVL 3

Author Comment

by:pma111
Comment Utility
If you have run AIXPERT as an audit type report as opposed to an "apply" these rules, does that show you what is non-compliant, is that saved to the same directory as mentioned above? Is the xml file a user freindly readable format (or do you need an accompanied style sheet to view the results)?
0
 
LVL 68

Expert Comment

by:woolmilkporc
Comment Utility
A  log of the comparison of the current settings against

/etc/security/aixpert/core/appliedaixpert.xml

(the only file you can use for comparison) is displayed in in simple text format on the terminal, like

...
Processing hls_ttdbserver :done.
Processing hls_cmsd :done.
Processing hls_rmsuidfrmrcmds : failed.
...
etc.

To create a file use redirection:

aixpert -c -p > /path/to/reportfile

Additionally, a verbose report (non-XML!) is created: /etc/security/aixpert/ check_report.txt

XML user friendly? Well, the opinions are divided, I assume.

Anyway, you can display the Document Type Description with

aixpert -d
0

Featured Post

6 Surprising Benefits of Threat Intelligence

All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

Join & Write a Comment

Just about everyone has an old PC laying around.  Ask anyone in the IT industry, whether they are a professional or play in it as a hobby.  From outdated Desktops to cheap "throwaway" laptops, they are all around and not as hard to "fix up" as you m…
The purpose of this article is to demonstrate how we can use conditional statements using Python.
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…
Connecting to an Amazon Linux EC2 Instance from Windows Using PuTTY.

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now