Hello all,
I'm new to this list, having only subscribed a day ago. I hope that I'm able
to benefit from the collective knowledge and experience of the participants on
the list.
I work in a support capacity assisting with Library Systems at the University
Of Technology, Sydney. My background is in desktop computing (Macintosh, PC,
Amiga) with exposure to SGI Indy workstations, NetBSD 1.0 for Intel boxes and
Solaris 2.4 forming the bulk of my Unix system usage. I have had only a small
amount of administration experience on Unix systems to date.
I have a reasonable degree of networking knowledge. (TCP/IP, Appletalk, Novell)
The reason I've joined this list is to help me with a task I've been assigned
by the library where I work. We have a DEC Alpha 3000 with 32Mb RAM and 4Gb
disk space. It is running OSF/1 1.0. This machine runs the Innopac library
software system from III Technologies.
I have been asked to examine the status of the system and produce a report
which covers system security concerns, system administration issues and
general system maintenance procedures.
Obviously, I'm going to have some difficulty covering all the pertinent
aspects of an OS with which I am not familiar. So far my administration
experience is limited to maintaining my own NetBSD 1.0 system running on
a 486.
So, what I'd like to find out is:
What are the key things to look out for when securing an OSF/1 system?
ie. any known security holes: eg. are there things like tftp enabled by
default, any ports which by default allow access to the system, etc.
should we be using a shadow password file? tcpwrapper? screend? what else?
Are there any information resources available on the net which give a
grounding in OSF/1 system administration and security procedures?
An archive of this mailing list perhaps?
I have the OSF/1 FAQ, the DTJ vol.4, no.4 and have had a quick look at other
files on ftp.digital.com.... I'm sure there's more material around than this
though.
Sorry for being so completely clueless with all this; I'm a programmer/graphic
artist/technical support person by trade; Unix system administration is not
my forte. Well, not yet.
All hints, tips, pointers, references and even flames will be accepted with
gratitude. If I receive any bits of information which I feel are of particular
relevance or importance (and do not fall into the category of common knowledge)
then I shall pass them on to the list as a whole. Of course, giving credit
where credit is due!
Regards,
Brad.
| Bradley Hughes | brad_at_uts.edu.au |
| Library Systems Support Officer | brad_at_next.com.au (non UTS stuff) |
| University Of Technology, Sydney | Ph: +61 2 3303340 |
| PO Box 123, Broadway NSW 2007 | Fax: +61 2 3303331 |
Received on Fri Apr 28 1995 - 02:28:17 NZST