Changing the system security profile
You were asked to choose a
security profile
at installation time.
It is possible to later select a different profile by using the
SCOadmin Security Profile Manager.
Use the Current security profile
button to change the profile and select
Host Save
to save the new profile. You may be asked
to reboot your system before the change takes effect.
These profiles are available:
High-
Recommended for systems containing
confidential information and accessed by many users.
Nearly all networking services are disabled;
information can be transferred to other systems
by users over the network, but cannot be received from
other systems. User accounts can be deleted, but the user
identification number UID cannot be reused for
a specified period.
Improved-
Recommended for systems accessed by groups of users who can share
information. Password expiration is more lenient and UIDs
can be reused as desired. Most networking services are enabled.
Traditional-
Provided for compatibility with other UNIX systems.
Passwords are required but they do not expire.
All networking services are enabled.
Low-
Recommended only for systems which are not publicly
accessible and which have a small number of cooperating users.
To change the security profile from the command line, use
relax(1M).
For example, this command sets the Improved profile:
relax improved
The security profiles are merely a set of values that can be customized
as desired. If you see this message in the display
it means that changes have been made to individual
security parameters in the past.
The security subsystem has been modified
Customized values
are overwritten when you select a new profile.
See also:
Next topic:
Security profiles
Previous topic:
Logging su(1M) usage
© 2004 The SCO Group, Inc. All rights reserved.
UnixWare 7 Release 7.1.4 - 22 April 2004