Solaris 10 Security Podcast: Not Just For The Privileged One(s)
By stern on Jan 19, 2007
This has been an extra-hot topic in every customer meeting I've attended in January. Operational folks who want separable system administration roles and individual process rights are happy to see those features show up in Solaris 10, decomposing the historically single privileged root into multiple points of control and delegation. Security and privacy experts, particularly those who worry about data architecture and what to do about the ever-growing volume of protecting data at rest, like new OpenSolaris projects involving cryptography for the ZFS filesystem and the lofi interface that makes filesystems look like files (for easier crypto-handling). We have long emphasized the security features in Solaris, and Solaris 10 adds in functionality that was formerly the express domain of the Trusted Solaris edition consumed by federal government customers.