|
|
 |
Security Recommendations: Solaris 2.6
Prepared by:
Computer Science and Information Technology Division (CSITD)
Information Technology and Telecommunications Laboratory (ITTL)
Georgia Tech Research Institute (GTRI)
Atlanta, Georgia
The complete document, in Microsoft Word format, is at
solaris security document.
(Note: This document is available currently to on-campus clients only.)
The authors are interested in comments and suggestions for improvement.
Contact <jim.jones@gtri.gatech.edu>.
Table of Contents
- 1. Introduction
- 2. Specific Recommendations
- 2.1. Patches
- 2.2. Services
- 2.3. Disable User-executable Stacks
- 2.4. TELNET Server Connection Information
- 2.5. SMTP Server Connection Information
- 2.6. DNS Server Connection Information
- 2.7. Sendmail and BIND Versions
- 2.8. Single User Boot Security
- 2.9. Remote Root Login
- 2.10. FTP
- 2.11. Check Trust
- 2.12. NFS
- 2.13. Path and rc Files
- 2.14. Umask
- 2.15. Password File
- 2.16. Accounts
- 2.17. UUCP
- 2.18. Disable TFTPD
- 2.19. NIS
- 2.20. Mail aliases
- 2.21. utmp(x) and wtmp(x)
- 2.22. EEPROM Password
- 2.23. Packet Filtering Routers
- 2.24. Promiscuous Mode Monitor
- 2.25. Login Information
- 2.26. File Integrity
- 2.27. Access Control
- 2.28. Logging
- 2.29. Process Accounting Logging
- 2.30. Unserved Ports
- 2.31. Crack and Passwords
- 2.32. Strong Authentication and Encryption
- 2.33. ASET
- 2.34. Regular Security Scans
- 3. Testing the System
- 3.1. ISS
- 3.2. mscan
- 3.3. S.A.T.A.N.
- 3.4. S.A.I.N.T.
- 3.5. CyberPatrol
- 3.6. COPS
- 3.7. TigerScript
- 3.8. nmap (portscanner)
- 4. References
|
Home : Information Security : Protection : System Administration 
