2007/12/19, Uncle Steve <steve.stamper@xxxxxxxxxxxx>:
Our security team that wants us to start UIDs at 2000 leaving all below
that for system and Unix Admin IDs. Not a bad idea I guess. My issue is
that /usr/bin/mkuser (the real tool behind useradd and smit mkuser )
grabs numbers below that by default. In Linux it's possible to set the
'minimum' number for user IDs unless specifically cited. Is there a way
to set this in AIX5.3? TIA - Steve
Edit the /etc/security/.ids file. Contains standard and administrative user IDs
and group IDs. This is simple ascii text file, the four numbers are the next:
'next admin user ID' 'next standard user ID' 'next admin group ID' and the
last 'next standard group ID'.
RE: PCI/DSS compliant Managed IDS ... So although the standard calls for the hosting company to be complaint, it is not their breach if they fail this standard, but the breach of the merchant. ... all service providers with access to cardholder data (including hosting ... If the monitoring of the IDS provide access to cardholder or transaction data, ... (Focus-IDS)
RE: How to choose an IDS/FW MSS provider ...Andrew, I can't completely agree with you. ... their IDS - may be this is the reason for thinking that great amount FPs is ... to admin to do something or not. ... Thus my point - while seeing the details of a signature is fascinating ... (Focus-IDS)
Re: privileged IDs and non-privileged IDs ... and create IDs for operational personnel to let them handle more routine ... i have also heard of role-based IDs...... security, and thus, wants us to differentiate IDs or usernames for admin...administrator or sa or adm, ... (comp.security.unix)
RE: Current state of Anomaly-based Intrusion Detection ... > traffic is, in essence, an anomaly detection system.... "learned" by the IDS itself. ... things that the admin didn't expect. ... The "unknown" part is detected by most ... (Focus-IDS)
Re: Intrusion Detection Systems ... so at the very minimum it "costs" the installation labour. ... > read of IDS systems indicate that *every* IDS suffers from false ... I have also commented on the level of system admin skills.... > what it is monitoring for is A) the possibility that the firewall has ... (comp.security.misc)
