canmove, Confirmed users
937
edits
FIPS Operational Environment: Difference between revisions
Jump to navigation
Jump to search
→Single Operator Mode of Operation
| Line 1: | Line 1: | ||
==Single Operator Mode of Operation== | ==Single Operator Mode of Operation== | ||
The following explains how to configure a UNIX system for single user. The general idea is the same across all Unix variants. | All the major general purpose operating systems today are multi-user OS. When the NSS cryptographic module is used at Security Level 1, only one user account should be created in the OS. | ||
Mac OS X and Windows XP are typically used with only one user account. The following explains how to configure a UNIX system for single user. The general idea is the same across all Unix variants. | |||
* Remove all login accounts except "root" (the superuser). | * Remove all login accounts except "root" (the superuser). | ||
* Disable NIS and other name services for users and groups. | * Disable NIS and other name services for users and groups. | ||
| Line 14: | Line 16: | ||
# Edit the system file <code>/etc/inetd.conf</code>. Remove or comment out the lines for remote login, remote command execution, and file transfer daemons such as <code>telnetd</code>, <code>rlogind</code>, <code>remshd</code>, <code>rexecd</code>, <code>ftpd</code>, and <code>tftpd</code>. | # Edit the system file <code>/etc/inetd.conf</code>. Remove or comment out the lines for remote login, remote command execution, and file transfer daemons such as <code>telnetd</code>, <code>rlogind</code>, <code>remshd</code>, <code>rexecd</code>, <code>ftpd</code>, and <code>tftpd</code>. | ||
# Reboot the system for the changes to take effect. | # Reboot the system for the changes to take effect. | ||
'''Red Hat Enterprise Linux''' | '''Red Hat Enterprise Linux''' | ||