password rule to be configured on esxi 4.1

i have to check n configure..

1. the following attributes set are allowed to have a non-expiring password:

/etc/ftpusers or
/etc/vsftpd.ftpusers

Id must exist in file

Restrict ftp access

*how to check for specifc servcie status on esxi like if ftp is installed or not ?


2.User stanzas with all of the following attributes set are allowed to have a non-expiring password:

File /etc/security/$FILENAME must be placed in the /etc/security directory and be identical to the filename used in the preceding rule.

Note:File containing a list of userids, one per line, that are not allowed to perform an interactive login to the system            
The actual filename may vary.

3. File /etc/pam.d/system-auth:

auth required /lib/security/$ISA/pam_listfile.so item=user sense=deny file=/etc/security/$FILENAMEonerr=succeed

Note: This entry must precede any entries of type auth whose control field is set to the value sufficient.

Note: The actual filename may vary, but it must be placed in the /etc/security directory and have permissions set to 0640 or more restrictive.

pls advcie to implement above  in esxi 4.1
LVL 1
patronTechnical consultant Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
ftp is not supported or a function of ESXi.

I believe the information you haver received is for Linux (ESX), not applicable to ESXi.

Which documents are you referring to, please post relevant links.

I would recommend, that if you are interested in VMware vSphere™ 4.1 Security Hardening, that you follow the current guidelines in this document

VMware vSphere™ 4.1 Security Hardening

This can also be checked using the VMware vSphere Compliance Checker which is a free download.

When VMware removed the Service Console (Linux) element from vSphere VMware ESX, which is now ESXi, we no longer have Linux security issues.
0
patronTechnical consultant Author Commented:
ok thanks hanccocksa  for your quick and fruitful responce

is it same for other points mentioned above [2 & 3] ?
0
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
Yes, I would like to know, the source of your information?

ESXi is NOT Linux.
0
Newly released Acronis True Image 2019

In announcing the release of the 15th Anniversary Edition of Acronis True Image 2019, the company revealed that its artificial intelligence-based anti-ransomware technology – stopped more than 200,000 ransomware attacks on 150,000 customers last year.

patronTechnical consultant Author Commented:
have attached the doc ,i have to check for esxi 4.1
may be i have asked other points in diffrenet queteions here.
can you just have look n advice if thèse are not coevered for esxi 4.1..and if any eveidnec/solution we can provide in both case wether y/n
fix-to-be-checked-on-esxi-4.1.xls
0
patronTechnical consultant Author Commented:
Please advice
0
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
I have looked through your document, and it would appear it's written for a much earlier version of ESX, version 2.0, it's out of date.

I would recommend, that if you are interested in VMware vSphere™ 4.1 Security Hardening, that you follow the current guidelines in this document

VMware vSphere™ 4.1 Security Hardening
0
patronTechnical consultant Author Commented:
pls advice if none of point is applicable to esxi 4.1?

if anyone related pls. confirm the point number ? or any related info, ll also check for that Harding doc

Thanks
0
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
Not Applicable to ESXi
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
patronTechnical consultant Author Commented:
pls confirm for point  number 2 in sheet , attached eralier, and advice for my question.

http://www.experts-exchange.com/Software/VMWare/Q_28233874.html
0
patronTechnical consultant Author Commented:
please advice
0
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
Not Applicable to ESXi
0
patronTechnical consultant Author Commented:
Thanks
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
VMware

From novice to tech pro — start learning today.