This page is funded by a Hewlett Packard special project in cooperation with CCSO.
If you have installed all the recommended
patches your HPUX machine should be mostly secure. However,
HP has not yet addressed all the known
security problems that exist with their operating system. This is a
(hopefully) complete list of security issues that should be taken care of
to ensure the highest level of security on your HPUX machines.
Known Security Holes
fpkg2swpkg: Setuid program that doesn't need to be. Users on the
machine can gain root access. Run the following
command to patch this hole:
chmod 500 /usr/sbin/fpkg2swpkg
vgdisplay: Setuid program that doesn't need to be. Users on the
machine can gain root access. Run the following
command to patch this hole: