HP3000-L Archives

March 2001, Week 2

HP3000-L@RAVEN.UTC.EDU
Options: Use Monospaced Font
Show Text Part by Default
Show All Mail Headers

Message: [<< First] [< Prev] [Next >] [Last >>]
Topic: [<< First] [< Prev] [Next >] [Last >>]
Author: [<< First] [< Prev] [Next >] [Last >>]

Print Reply
Subject:
Re: MPE 6.0 Security
From:
Tony Summers <[log in to unmask]>
Reply To:
Tony Summers <[log in to unmask]>
Date:
Mon, 12 Mar 2001 11:29:52 +0000
Content-Type:
text/plain
Parts/Attachments:
text/plain (65 lines) 
The only thing Andreas didn't mention about Vesoft was the option to give users a menu once they have logged on.   This ensures that each user is given access to the applications they need and prevents them from entering MPE commands. 

And we also use Vesoft to validate the users password for our Client/server logins to the HP !

>>> Andreas Schmidt <[log in to unmask]> 12/03/01 09:22:42 >>>
Hi Donna,

because of the high expectations for security our customer has, we have in
addition to the good MPE security the VESOFT Security/3000 in place. This
mainly because the need to identify each individual within shared accounts.
So USER.ACCOUNT is needed for the application but not enough to see the
individual behind the logon. So we use the session name to identify, and to
make sure (using the session password) that the REAL person logs on
(assuming that nobody gives away this personal password). The session
password expires every 90 days; the MPE-user-password stays a while (...
one year ...) because if this will be changed a LARGE community must be
informed.

Currently we're in the process to replace the static Sec/3000 password by
the dynamic RSA SecurID password (Two-Factor Token Authentication). I've
written an article on this in the HP3000 Newswire if you want more info
about this.

Sec/3000 (and MPEX) are the mostly used tools in our company. Sec/3000 adds
a lot of security related features. Veaudit checks the system for Security
weaknesses. And MPEX is a better CI ... HP folks, don't cry ... but you
know that MPEX is always some steps ahead (e.g. the PURGE command ;-)

Best regards, Andreas Schmidt, CSC, Germany





Donna Rivett <[log in to unmask]>@RAVEN.UTC.EDU> on 09/03/2001
07:18:45 PM

Please respond to Donna Rivett <[log in to unmask]>

Sent by:  HP-3000 Systems Discussion <[log in to unmask]>


To:   [log in to unmask] 
cc:
Subject:  [HP3000-L] MPE 6.0 Security


Hi All -

I'm a fairly new user to MPE 6.0 and we are running this on a 969KS/220
soon to be 979-200.  The question I have is on security.  I'm wondering
what everyone else is using to protect their systems.  Does MPE have
adequate security or should we look at purchasing other security
applications like VeSoft?

Any and all feedback is appreciated.  Thank you in advance!


Donna  Rivett
HP System Administrator/Project Coordinator
Northern Safety Co., Inc.
Phone  315 793-4990
Fax    315 793-4970
Email  [log in to unmask]

ATOM RSS1 RSS2