Chapter Review Questions

Which Orange Book classification would HP-UX Trusted Systems be associated with if it were subjected a formal review? Explain your answer.

What are the default content restrictions for a non-root password on a non-Trusted System? Give an example of such a password. How can we change the default password length and password content restrictions?

On a non-Trusted System, the following entry was manually appended to a user 's encrypted password in the /etc/passwd file:

,A9..

Give a plain English interpretation of this entry.

Below is an extract from the /tcb/files/auth/system/default file:

 #  cat /tcb/files/auth/system/default  default:\         :d_name=default:\         :d_boot_authenticate:\         :u_pwd=*:\         :u_owner=root:u_auditflag#-1:\         :u_minchg#0:u_maxlen#8:u_exp#15724800:u_life#16934400:\         :u_pw_expire_warning#604800:u_pswduser=root:u_pickpw@:u_genpwd@:\         :u_restrict:u_nullpw@:u_genchars:u_genletters:\         :u_suclog#0:u_unsuclog#0:u_maxtries#3:u_lock:\         :\         :t_logdelay#2:t_maxtries#10:t_login_timeout#0:\         :chkent: # 

This is the TCB file for user barney :

 #  cat /tcb/files/auth/b/barney  barney:u_name=barney:u_id#106:\         :u_pwd=7Hcf1zI4QmdzU:\         :u_auditid#17:\         :u_auditflag#1:\         :u_bootauth:\         :u_succhg#1065283999:u_pswduser=barney:u_pwchanger=root:\         :u_tod=Mo,We,Fr0900-1300:\         :u_suclog#1065276441:u_lock:chkent: # 

Answer the following questions relating to barney and the system-wide defaults:

Give appropriate explanations for each answer.

What are "buffer overflow" problems? What types of problems do they commonly cause? What are they also known as, and what measures can we take to avoid them?