Using CIS Controls with AIX PDF Print E-mail
Written by Michael Felt   

As an author of the AIX benchmark for CIS Security I have been reorginizing the benchmark - not to be a reflection of the command aixpert which is likely only understandable by AIX/UNIX/Linux administrators to one that follows the organization of the CIS Controls themselves.

There are a lot of organizations that are still committed to CIS Controls Version 7.1. However, earlier this year (2021) the newest version of CIS Controls Version 8 was released. With this new release the control numbers have changed greatly. Historically, CIS ised the order of the Controls as a means to focus cybersecurity activites performed by an organization - with the first 6 controls labeled "cyber hygiene". In version 7 CIS started a new method of guidance (while leaving the order of chapters largely intact). The new guidance was called Implementation Groups (IGs). FYI: In version 7.1 the Controls were still grouped by chapter order in three categories: Basic, Foundational, and Organizational.

Read more...
 
Where is AIX Product Info? PDF Print E-mail
Written by Michael Felt   

Actually, what I wanted to find was the latest version of "AIX: Strength to Strength", but sadly, I cannot find that document. If you know where it is - be great and tweet it to me! @rootvgnet

Sadly, I also needed a lot of clicksto find something like an "AIX product homepage".

So, to save you the same problems - the current link is here!

(p.s., also tweet if it breaks, as I am nearly certain it will!)

 
IBM LC Series RAID Card Configuration PDF Print E-mail
Written by Ozan Uzun   
I installed a couple of 82xLC machines, which have on board sata/sas cards.
I see that the raid card configuration is not well documented.
Last Updated ( Wednesday, 11 July 2018 )
Read more...
 
Moving On PDF Print E-mail
Written by Michael Felt   

Today is an important day for my OSS portal AIXTOOLS because I am goig to start packaging some packages based on AIX 6.1 TL7 (SP6) - rather than "always" at level AIX 5.3 TL7.

The packages that will start everything off will be security related packages (such as sudo - so I can add RBAC features (pst: a test version of sudo-rbac here ),  python (to add, among other things libuuid support), and other networkbased tools.

As of this moment - nothing is switched yet - but most new things will be built on my new development partition - x066 - running, again AIX 6.1 TL7.

Last Updated ( Thursday, 19 April 2018 )
Read more...
 
Security is HOT! Get Serious!! PDF Print E-mail
Written by Michael Felt   

Security is HOT!

Yes, that is something "we" have been saying for years. Finally, it seems that high-level business management is noticing that not securing systems and applications really does cost profit. OMG! - Securing systems is not just a bunch of Hype!

What has been going on?

My quick crystal ball (that sees perfectly into the past Foot in mouth) tells me - while the rest of us were sleeping and having pleasant dreams - the "hacking as a business" group has done some serious study on application and platform weaknesses. And, "today" we wake from our dreams to find ourselves living a nightmare. We dreamed we were safe. Maybe better is the lesson of the fable: "The King's New Clothes"and we are at the point where the King (our business management) realizes the royal house is walking around - well, you know! Wink

Last Updated ( Friday, 09 February 2018 )
Read more...
 
<< Start < Prev 1 2 3 4 5 6 7 8 9 10 Next > End >>