Jump to content United States-English
HP.com Home Products and Services Support and Drivers Solutions How to Buy
» Contact HP
More options
HP.com home
 HP-UX 11i Version 2 December 2007 Release Notes: Operating Environments Update Release > Chapter 8 Security

HP-UX Bastille and Install Time Security
» 

Technical documentation

Complete book in PDF
» Feedback
Content starts here

 » Table of Contents

spacerspacerspacer
spacer
spacer
  		 
 

HP-UX Bastille. A tool that configures a system to be more secure based on functionality/security trade-offs

Install Time Security. Install Time Security (ITS) leverages the product above to secure a system at installation time. It does so by presenting four customer-selectable bundles to bring the system to one of four levels:

  • DMZ – Suitable for deployment in a DMZ

  • Managed DMZ – allows select authenticated management protocols in through the IPFilter-based firewall

  • Host – Locks down without setting up a firewall like DMZ and Managed DMZ,

  • SecTools – a “tools-only choice,” makes no configuration changes but loads all the tools and infrastructure to pre-enable easy lockdown at OS runtime

Summary of Change

For the December 2007 release of HP-UX 11i v2, HP-UX Bastille version 3.0.xx includes the following changes:

  • HP-UX Software Assistant (SWA) integration has been added. (SWA integration was initially delivered on the September 2007 Application Release [AR] media. It has now been carried forward onto the December 2007 Operating Environments Update Release [OEUR] media.)

  • Defect fixes have been incorporated.

  • Security configuration reporting.

  • Configuration drift detection from saved baseline.

Impact

HP-UX Software Assistant (SWA) creates much more robust and useful reports on the patch status of the system. Bastille can now schedule SWA. In addition, defect fixes have been incorporated.

Compatibility

There are no known compatibility issues.

Performance

There are no known performance issues.

Documentation

For further information, see the following:

Obsolescence

In HP-UX 11i v3 initial release and in the June 2007 release of HP-UX 11i v2, HP-UX Bastille's bundle, B6849AA, was replaced by HPUXBastille. It contains the same products.

HP-UX Bastille version 3.0 does not support HP-UX 11.00. For customers using HP-UX 11.00, Bastille version 2.1 is available on the web at http://hp.com/go/bastille.



What is in This Chapter?
  		 


HP-UX IPFilter  
Printable version
Privacy statement Using this site means you accept its terms Feedback to webmaster
© 2007 Hewlett-Packard Development Company, L.P.