Hi,
I administer a lab with Solaris 2.6 and would like any web sites or
information on security holes that may be there and how to patch them.
John
by John Warre » Wed, 03 Mar 1999 04:00:00
I administer a lab with Solaris 2.6 and would like any web sites or
information on security holes that may be there and how to patch them.
John
by Jim Dav » Wed, 03 Mar 1999 04:00:00
Be sure you keep up to date with the latest recommended and security
patches from Sun (http://sunsolve.sun.com/pub-cgi/us/pubpatchpage.pl).
And check out "Securing Solaris Servers - A Checklist Approach" by
Vandenberg and Wyess
(http://www.usenix.org/sage/sysadmins/solaris/index.html).
Sunworld magazine (http://www.sunworld.com/sun.index.html) has a good
regular column about security. The back issue columns are well worth
browsing.
You might also check out Titan (http://www.fish.com/titan). Lots of
interesting ideas, along with some rough edges.
I'd also keep an eye on bugtraq (http://www.geek-girl.com/bugtraq) and
rootshell (http://www.rootshell.com), as two good general resources.
--
Jim Davis | "Professor! You turned it down again!!"
by Mac Schwar » Thu, 04 Mar 1999 04:00:00
JD> Solaris 2.6 and would like any web sites or :information on
JD> security holes that may be there and how to patch them.
JD> Be sure you keep up to date with the latest recommended and
JD> security patches from Sun
JD> (http://sunsolve.sun.com/pub-cgi/us/pubpatchpage.pl).
JD> And check out "Securing Solaris Servers - A Checklist Approach" by
JD> Vandenberg and Wyess
JD> (http://www.usenix.org/sage/sysadmins/solaris/index.html).
JD> Sunworld magazine (http://www.sunworld.com/sun.index.html) has a
JD> good regular column about security. The back issue columns are
JD> well worth browsing.
JD> You might also check out Titan (http://www.fish.com/titan). Lots
JD> of interesting ideas, along with some rough edges.
JD> I'd also keep an eye on bugtraq (http://www.geek-girl.com/bugtraq)
JD> and rootshell (http://www.rootshell.com), as two good general
JD> resources.
In addition to the tips from Jim Davis there's a general Solaris security
FAQ also:
http://www.sunworld.com/common/security-faq.html
Regards,
mac
--
mac Schwarz / AERIA Projekt / Inst. f. Klassische Archaeologie
FAU Erlangen-Nuernberg / Kochstr.4 / 91054 Erlangen
<http://www.phil.uni-erlangen.de/~p1altar/aeriahome.html>
1. Need info on differences between solaris 2.6 and Solaris 9
We're planning to buy a new server and I would like to know what are
the new features in solaris versions since 2.6 to 2.9. We received
all the versions since 2.6 with our support but never installed them.
2.6 is beginning to date and we want to move on.
What is the best place to look for that info, other than reading all
the release notes and all the docs that comes with my media upgrades ?
Thanks
2. PPP/Telnet - What tty invoked a telnet session?
3. Compiling Crack on Solaris 2.6
6. test
7. Crack 5.0a with Solaris 2.6 NIS+
8. Cable TV Montgomery Expressnet problems
9. can't read Solaris 2.6 x86 hard disk on Solaris 2.6 Ultra-1 ?!?
10. Upgrade from Solaris 2.6 with Volume Manager 2.6 to Solaris 8 with Volume Manager 3.2
11. Solaris 2.6 info requested
12. Solaris 2.6 patches wipe out network config info
13. Some Info about Direct I/O of Solaris 2.6