SPI/U3.2. Security Profile Inspector for UNIX Systems
- Lawrence Livermore National Lab., CA (United States)
SPI/U3.2 consists of five tools used to assess and report the security posture of computers running the UNIX operating system. The tools are: Access Control Test: A rule-based system which identifies sequential dependencies in UNIX access controls. Binary Authentication Tool: Evaluates the release status of system binaries by comparing a crypto-checksum to provide table entries. Change Detection Tool: Maintains and applies a snapshot of critical system files and attributes for purposes of change detection. Configuration Query Language: Accepts CQL-based scripts (provided) to evaluate queries over the status of system files, configuration of services and many other elements of UNIX system security. Password Security Inspector: Tests for weak or aged passwords. The tools are packaged with a forms-based user interface providing on-line context-sensistive help, job scheduling, parameter management and output report management utilities. Tools may be run independent of the UI.
- Research Organization:
- Lawrence Livermore National Lab. (LLNL), Livermore, CA (United States)
- Sponsoring Organization:
- USDOE Office of Security Affairs, Washington, DC (United States); Department of Defense, Washington, DC (United States)
- DOE Contract Number:
- W-7405-ENG-48
- OSTI ID:
- 77710
- Report Number(s):
- ESTSC-000734MLTPL01
- Resource Relation:
- Other Information: DN: For security reasons, many data paths are fixed in the code during the installation (compiling) process. Therefore, SPI must be separately installed on each platform on which it is to be run. SPI output reports and cdt database archives may accumulate. These files should be purged manually as appropriate to the need and available disk space.; PBD: 1 Aug 1994
- Country of Publication:
- United States
- Language:
- English
Similar Records
Security Profile Inspector for UNIX Systems
SPI/UNIX user manual: Security Profile Inspector