HP-UX Bastille is a security hardening/lockdown tool which can be used to enhance the security of the HP-UX operating system. It provides customized lockdown on a system by system basis, addressing a large number of the recommendations from a number of popular security scanning tools and checklists.
Features and Benefits
Configures daemons and system settings to be more secure
Turns off unneeded services such as pwgrd
Helps create chroot jails that partially limit the vulnerability of common Internet services such as Web servers and Domain Name System (DNS)
Educates users through its user interface
Configures Security Patch Check to run automatically
Configures an IPFilter-based firewall
The revert feature returns the security configuration to the state before Bastille was run
HP-UX Bastille must be downloaded and installed from the HP website.