JASS & me

As many of you may know, over the last 4+ years, I have worked as the lead developer on the Solaris Security Toolkit. It has been a wild ride and a lot of fun. After supporting over 20 releases of the code however, I have decided that it is time for me to try some new things. While I am not leaving Sun, I will no longer be actively developing JASS. Instead, I will be working on a number of other new skunk-works projects that I can only hope will be as useful to our customers and as successful as JASS has been.

The Solaris Security Toolkit has come a long way from its humble beginnings as a skunk-works project. The Toolkit has grown and matured over the years and has been deployed at over 20,000 customer systems across the globe helping to secure Solaris and Trusted Solaris on the SPARC, Intel and AMD platforms. It has been integrated into a number of Sun Client Solutions and iForce offerings as well as Sun Education courses and certification exams. In short, it has become the de facto standard to hardening the Solaris OS.

More recently, the Solaris Security Toolkit has undergone a productization effort and detailed architectural review. JASS has gone a long way from just a "toolkit developed by SunPS". Today, JASS is an official project with dedicated resources for architecture, development, quality assurance, release engineering and documentation. You should start the the fruits of this effort starting with the next release of the Toolkit. Alex Noordergraaf, the co-founder and lead architect of JASS, will continue to drive the project ever forward. This is all great news and will serve to make the Toolkit even better than ever.

I will continue to work with the JASS team in a consultative capacity especially on matters of architecture, Client Solutions integration and support. As many people have in the past sent me JASS related questions and RFEs directly, I would take this opportunity to ask that you forward them to jass-feedback@sun.com so that they can be properly handled.

Lastly, I just wanted to thank all of the JASS users! Without you, the Toolkit would not be what it is today. This project has succeeded more than I could have ever dreamed. Please accept my heartfelt thanks for your enthusiasm for the project as well as your support and patience (especially for those early releases) ;-)

Take care,



A while back (like July) you hinted at a new version "soon".... when can we expect an updated version that works with Solaris 10_b69? (smf seems to be a major change from a jumpstart script change....) And by the way, JASS rocks (i've used in at 3 companies over the past few years and it has saved me a ton of time)

Posted by John on November 12, 2004 at 06:59 AM EST #

I was going to ask the same question - and am also interested any answer. Great work JASS guys - from all the sysadmins at [ company in my email address ] - the hard work you've put in has made securing Solaris boxes easier - which makes our lives easier. Alex

Posted by Alex Madden on November 12, 2004 at 09:12 AM EST #

John and Alex,

Thank you very much for your kind words of support and encouragement. I cannot even begin to tell you how much they are appreciated.

I cannot speak as to futures, but I can safely tell you the Solaris 10 support (using the Service Management Facility) is in the works and is on track for release in early 2005. Unfortunately, I cannot get into more details than that right now.

If either of you are interested in being a beta site for a version of JASS that will support Solaris 10, please drop an e-mail to jass-feedback@sun.com.

Thank you again for your feedback and support!


Posted by Glenn Brunette on November 12, 2004 at 02:11 PM EST #

Post a Comment:
Comments are closed for this entry.

This area of cyberspace is dedicated the goal of raising cybersecurity awareness. This blog will discuss cybersecurity risks, trends, news and best practices with a focus on improving mission assurance.


« February 2015