My questions:
I need to lock down my nodes as much as possible.
I have inherited a system where no one can log into the console as
root. I have set the console password as well and set auto_action to
halt. C2 is installed and auditing turned on and monitored.
I have 4100s, 3000/900s and 255s.
There is no halt button on the 255s. Is there something I need to set
inside so that I can be assured that it halts when powered on? (I
already set auto_action to halt.)
Is it wise to not be able to log in as root at the login window at the
console (not referring to the >>> console prompt)(and why or why not).
They want people to be able to su to root so that it can be audited.
If someone can log in to console as root (not referring to the >>>
console prompt) can it be audited?
Can auditing be turned on automatically at the >>> console prompt when
booting to single user mode?
We also are running NIS.
-- Thank you,
Louis
lamullikin_at_ccgate.hac.com
Received on Mon Apr 27 1998 - 13:35:35 NZST