Re: Hardening an old Ultrix server

phn_at_icke-reklam.ipsec.nu
Date: 05/23/03

  • Next message: Tom Ivar Helbekkmo: "Re: Hardening an old Ultrix server" 
    Date: Fri, 23 May 2003 09:34:28 +0000 (UTC)

    Jacques Bourdeau <J_Bourdeau@videotron.ca> wrote:
    > Hi,

    > I have to improve the security of an old Ultrix server. The first thing
    > I have to change is the old password file. Passwords are still in
    > /etc/passwd and readable by every one.
    Wrong. The hash of the password is readable. This is a huge difference

    And if the passwords are "good enough" ( cannot be guessed, is not in a
    dictionary etc) you won't need 'Q1'

    > Q1 : How can I replace the old password file with a shadow password
    > under this old Ultrix system ?

    You would at least need to replace libc + a few assorted binaries. I doubt
    it's doable (unless you stumble over a ready-to-use-kit)

    > I also have to replace the existing telnet and similar with SSH.
    You mean add ssh ( and disable telnet) ?

    > Q2 : Does anybody successfully install SSH in this old OS (Ultrix) ?
    > How should I do ?

    Grab tarkit,
    ./install
    make
    make install

    Have you read the ssh documentation ?

    > Any assistance / information about this OS (older the me ;-) would be
    > very helpful!
    There is a "comp.unix.ultrix" group, hav eyou tried posting there ?

    > Thanks in advance,

    > Jacques Bourdeau 

    -- 
Peter Håkanson         
        IPSec  Sverige      ( At Gothenburg Riverside )
           Sorry about my e-mail address, but i'm trying to keep spam out,
	   remove "icke-reklam" if you feel for mailing me. Thanx.
  • Next message: Tom Ivar Helbekkmo: "Re: Hardening an old Ultrix server"