| Javascript Feeds RSS Feed Security Dashboard | SearchSecurity.com |
|
Central Logging with a Twist of COTS in a Solaris Environment In this paper we will take a look at how to set up a central logging system for a network of Solaris machines, some of which will be hosting COTS products. The Solaris version that will be assumed for this paper is Solaris 8. The first area that will be covered is the configuration of a central log server. This will include the steps needed to prepare the log server to properly process and protect the various types of log messages that it will be receiving.
By Kent Stout, 07/08/2004
|
|
Operating Environment Minimization for Security This paper covers:The concept of “Operating Environment Minimization for Security”, how “Operating Environment Minimization for Security” relates to other host based security measures that are in use today, some guidelines on how to achieve “Operating Environment Minimization for Security”, and the application of “Operating Environment Minimization for Security” to the Sun Microsystems Solaris 8 operating environment
By Jeffrey Bailey, 07/08/2004
|
|
Configuration and Patch Verification on Solaris Systems In this paper, I discuss two configuration monitoring scripts which I have used to ensure that systems are up to patch and configuration standards. I have found these scripts is to be transparent enough to allow significant customization, but powerful enough to check for most key configuration issues.
By Scott Cromar, 07/08/2004
|
|
BSM Security Auditing for Solaris Servers This article discusses the pros and cons of BSM. It describes how to enable, configure, and manage the BSM auditing on Solaris servers to secure the system. Based on the author’s experience, this article also gives a few solutions to overcome some problems and disadvantages of BSM.
By John Sun, 07/08/2004
|
|
Security in Solaris Naming Services Past, Present and (near) Future This paper will provide an overview of some of the security implications of Unix naming services with a view towards the adoption of an LDAP v3 based directory. It is by no means intended to be a how-to guide -- though it will list in its references sources which, in aggregate, would provide a wealth of guidance for planning a deployment. It will be written from a Solaris perspective but much of the content is general enough to be applicable to other Unix and Linux operating environments.
By Paul Kirtland, 05/17/2004
|
|
Solaris Patching: Problems, Solutions, and Open Issues This paper takes a high level look at reasons to patch, the extent to which systems in the wild are being patched and the patch management process; specifically under current versions of Sun's Solaris Operating Environment. After looking at the extent of the problem of unpatched systems and the barriers to patching; I look at some of the strategies and tools, both from Sun and the system administration community, that address these problems and point out areas that are in need of further work. Sun's Blueprint for a high level patching strategy is used as a framework for discussing patching issues throughout this paper.
By Julie Baumler, 05/17/2004
|
|
Solaris 8 Build Document This document details the configuration, hardening, monitoring and vulnerability assessment of the Solaris operating system. It can also be used as a configuration standard, providing a baseline to audit against. It is important to understand the configurations at a granular level to troubleshoot outages. Installs and hardening can be automated with Jumpstart and the Solaris Security Toolkit (respectively).
By Gideon Rasmussen,, 05/17/2004
|
|
Securing Solaris Servers Using Host-based Firewalls This paper will cover the addition of security to several Solaris servers through the use of host-based firewall software. The servers reside on an unsecured university network. I will attempt to detail the choices that were made in the selection of the firewall software as well as its installation and configuration. I will conclude with a comparison of the vulnerability assessments from before and after.
04/05/2004
|
|
Solaris Hardening Guide (Spanish) This paper, in Spanish, gives the administrator the basics about how to secure a default Unix installation. It is generic and applies to various .nix operating Systems including Solaris, RedHat and SuSe.
04/05/2004
|
|
IMPLEMENTING sudo TO REPLACE su As a historically semi-autonomous user community, conducting research on its own, mostly in isolated labs, and separate from the main production lines, the POISE group has enjoyed an usually high level of freedom. And among these freedoms are, not only Administrator privileges on their personal Windows/Intel workstations, but also su access on their Sun/Solaris servers! This is rather ironic, given that most XYZ users must observe very strict adherence to that corporations security policies. Later, I will show you actual excerpts from those policies. Furthermore, because of the potential danger associated with su access (more on this later), many companies, both large and small, strictly limit its use on ALL production servers. And on those rare occasions, when su access is allowed, its use is strictly limited to that of certain authorized/qualified members of the IT support staff, and then only at the systems consoles!
04/03/2004
|
|
Page: 1 2 3 |
