By BigAdmin team on Oct 29, 2008
The updates includes changes to Writing Device Drivers; System Administration Guide: Security Services; Solaris Trusted Extensions Administrator's Procedures; and System Administration Guide: Basic Administration.
This article from the BigAdmin community shows how to create a RubyGems remote repository that is password protected.
New on the BigAdmin wiki: Security Tech Tip by Nuno Rocha on monitoring superuser access. Want to monitor who is using the
su command? This tip shows how to ensure the Solaris 10 OS records all superuser attempts in the
Read this blog from Sun's Global System Engineering (GSE) Security Team, aka Glenn Brunette, Joel Weise, Rafat Alvi, and Bart Blanquart. Adaptive security offers a long-term vision for how IT systems will be designed, implemented and managed in the future.
Since anonymous access to an entire directory tree can be a security risk, this blog posting clarifies what anonymous access is required by Solaris native-ldap clients. When Solaris native-ldap clients are
initialized they require anonymous access to the Sun Java System Directory Server's baseDN and ou=profile container. The acis here
configure the appropriate access.
Want to put a security framework around your local and global zones? This aticle explains how to deploy Solaris Trusted Extensions and describes the interactions between systems that have this technology and systems that do not.
Read Inner Circle newsletter's interview with two security experts at Sun: Glenn Brunette, Distinguished Engineer, and Rafat Alvi, Principal Engineer.
Role-based access control (RBAC), privileges, auditing, and the Basic Audit Reporting Tool (BART) are security features of the Solaris OS. This article links to tutorials about these features that were created by OpenSolaris community members.
"Part 1 -- Installation and Configuration" has a lot of new info on configuring SSL using CA-signed certificates. See the section on "Configuring SSL and the
Here's a new community submission on remote updates using rdist and rsync with sudo. You can use rdist and rsync over ssh from a master machine and use sudo on the client machines from a non-privileged account.