Name

secsetup − Enable the enhanced security features

Syntax

/usr/etc/sec/secsetup

Description

The secsetup command is an interactive facility that allows you to enable the enhanced security features on your system. You must first have loaded the enhanced security subset onto your system before running the command.

The secsetup command allows you to configure your system either for security auditing, trusted path, enhanced login, or any combination of those features. In addition, the secsetup command may add lines to the /etc/rc.local file.

Note

To remove entries from the /etc/rc.local you must edit it by hand. The secsetup command only adds lines to this file if they aren’t already present.

You can run secsetup while the system is in multiuser mode (however, some inconsistencies may result from this.  Please read the ULTRIX Security Admin Guide for more information). To run secsetup, type the following and then answer the questions that follow:

# /usr/etc/sec/secsetup

Depending on the security features chosen, when secsetup completes you may need to replace your system’s kernel and reboot the system. For example, chosing either the security auditing or trusted path feature may require you to re-build your kernel.

Files

/etc/sec/audit_events
/etc/auth
/etc/passwd
/etc/rc.local
/etc/svc.conf

See Also

set_audit_mask(8), auth(5), svc.conf(5)
Security Guide for Administrators