Zones R Us


Trusted Extensions extends Solaris 10 Containers (zones)  by
associating unique sensitivity labels with zones. The interaction
between zones and labels, and the various steps involved in zone
management can be confusing. Although Trusted Extensions provides a set
of CDE Administrative Actions to hide some of the details, it is still
too complicated and error prone



I have written a script, txzonemgr, to manage labeled zones in a structured manner
which simplifies and automates many of these steps. The script uses
zenity(1) to provide a point and click interface. As zones are
transitioned from one state to another, only valid choices are
presented. The script supports the complete zone life-cycle, including
configuration, installation, label assignment, starting, stopping, making
snapshots, uninstalling, and deleting.



Obviously you can't run the script unless you are already running
Trusted Extensions. So now you have another reason to try it out.


Comments:

Post a Comment:
  • HTML Syntax: NOT allowed
About

This blog explores some of the security features of Oracle Solaris. In particular, topics such as Role-Based Access Control and Labeled Security are my special interests.

Search

Categories
Archives
« April 2014
SunMonTueWedThuFriSat
  
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
   
       
Today
Bookmarks