[Background]
Construction Bank, Guangdong Branch of the core business systems are currently running on HP 9000/800 server platforms, including the savings system, accounting system, credit card system, a provident fund system. Personnel involved, including system operation and maintenance of post, post operation and maintenance savings, accounting, operation and maintenance Kong, bank card operation and maintenance posts. As the UNIX permissions system, the system shows that there are some security risks of these systems:
Different people use the same operating system user account to operate, not on the specific operation to a staff audit.
Can not avoid the super-user root can be converted to other users to operate.
Super-user business systems root can be free to modify files or directories, and these business system files or directories should be specified by the user's user acct operation and maintenance.
Development and maintenance personnel access to intersect. But do not know each other and each other's operating specifications, it is bound on the same machine during the operation had a negative impact.
[Implementation of the Introduction]
We use the CA's eTrust Access Control to solve the above security risk, security and protection as follows:
User division of management: for all the operating system to create the appropriate use.
System command Audit: audit on the system command specified by the user, such as: copy; rm; vi so that any user to execute commands through this provision, would leave an audit record. In addition to the executable file on the user-specified audit procedures such as the implementation of the key file directory lsql protection: the application of business systems to protect important files and directories. Even if the super user root can not be modified.
Protection of key processes: the more important business systems audit process.
User restrictions: the business users of the system for protection, does not allow users to convert the super-user.
Security Audit: When users want to operate business systems, use their own in Yonghu account login, Zai su to the corresponding user, Ru su to the user acct.
Sign Restrictions: In order to ensure the uniqueness of the audit, can the user root and business users of the system such as the acct, savjy, savzw manner restrictions such as the login, that does not allow these users to log into the system.
[Implementation of the Introduction]
China Construction Bank through the implementation of eTrust Audit, eTrust Access Control system security has been well strengthened, mainly from the following aspects have been embodied: to ensure stability of the system: the system critical processes, key system configuration files and system directories are protected key to ensure the stable operation of the system. Guarantees, such as Informix, tuxedo and other systems can be stable even if the misuse run.
Limited root permissions, root permissions in unix systems too large a system one of the causes of insecurity in the implementation of the eAC limited after well make the system root permissions to be a reasonable allocation of authority.
Limits the general user's system privileges, including user su to other user's permission, making the user's authority as legitimate.
Limiting access and even out of the system, limiting the connect (telnet, ftp source) system and the system with the ip (telnet purposes) ip, to ensure the system's overall security.
Limit user login, root and other system account can not make a direct registration system ensures you can audit to the user's operation.
Security, password policy, password policy through the use of making the system user password security is greatly improved.
Security audit and retain all audit logs, through eAC, Audit of the implementation, the user can audit all system operation and security audit log can not be deleted, the audit log can be found by looking at the specified operation.