| Javascript Feeds RSS Feed Security Dashboard | SearchSecurity.com |
|
Auditing-in-Depth for Solaris Too often, organizations rely solely on the output of a single network-based vulnerability-scanning tool to audit their security posture. These scans can only address network based vectors. Relying solely on network-based scans can give organizations an incomplete view of their security posture. It also can give security analysts a reputation as, “the guys who just show up and run scans.” For all threat vectors to be addressed, the target should be examined from both the inside and outside by a combination of manual tests, automated tools, and policy review.
03/24/2004
|
|
Solaris 8 Build Document This document details the configuration, hardening, monitoring and vulnerability assessment of the Solaris operating system. It can also be used as a configuration standard, providing a baseline to audit against. It is important to understand the configurations at a granular level to troubleshoot outages. Installs and hardening can be automated with Jumpstart and the Solaris Security Toolkit (respectively).
03/19/2004
|
|
Solaris 8 and 9 Operating System Hardening Guideline Document v1.0 This document provides background information and detailed steps that should be taken in order to harden the Solaris 8 and Solaris 9 operating systems against common network security attacks. Please note however that operating system hardening procedures cannot be followed blindly. Operating system hardening involves, among other things, turning off all services that are not required for particular application. For this reason, each operating system hardening instance must be customized and this document should only be considered as a general guideline to follow during this customization.
03/19/2004
|
|
Securing Solaris When configuring a Solaris system for production, a balance must exist between system manageability and security. It is necessary to determine the role the system will play in order to determine what services it needs to run. The objective is to keep things simple.
03/19/2004
|
|
Armoring Solaris: II Firewalls are one of the fastest growing technical tools in the field of information security. However, a firewall is only as secure as the operating system it resides upon. This article is a continuation of the original Armoring Solaris article, focusing on building a minimized Solaris 8 64-bit for CheckPoint FW-1 NG firewall. This article does not include an updated script for the automated securing of the new installation, as there was in Armoring Solaris. Instead, we will be using Solaris Security Toolkit (JASS). This is a new tool developed and released by Sun for the secure deployment of the Solaris platform. In otherwords, I'm not going to develop a tool to automate the secure build since that tool is already out there.
02/21/2004
|
|
Page: 12 3 |
