This paper is meant to serve as an introductory guide to the basic security and server hardening functions present in AIX. Many of the features and functions shown throughout this guide are applicable to AIX 4.3 and above, but are more directed toward AIX 5.2. This guide attempts to cover a lot of ground and offers useful and necessary insight for anyone administering AIX machines.
Since security is and will always remain a major issue in server environments, it is crucial that system administrators have a strong working knowledge of security policy implementation and hardening features. This knowledge can be applied to new systems, or to bring older systems up to date.
Security, as many people mislabel it, is not a game of cat and mouse. The intruders are very intelligent and deserve respect for their knowledge of security and general computing. They should be respected as equal, not inferior. A security-minded administrator would use the appended list of computer exploit websites created by these people to have a better understanding the resources available to parties who may exercise these vulnerabilities.
Read the full paper in PDF format here