What do we need to do to harden a freshly installed solaris OS? like disable telnet, no ftp for root etc...What all services you need to stop? How to check what ports are open? etc etc....please provide all tips that come to your mind...thanks:)
what you maybe need is:
https://cds.sun.com/is-bin/INTERSHOP.enfinity/WFS/CDS-CDS\_SMI-Site/en\_US/-/USD/ViewProductDetail-Start?ProductRef=Sol-Security-TK-4.2-SOL-G-F@CDS-CDS_SMI
original from Sun:
The Solaris Security Toolkit, formerly known as the JumpStart Architecture and Security Scripts (JASS) toolkit, provides a flexible and extensible mechanism to harden and audit Solaris Operating Systems (OSs). The Solaris Security Toolkit simplifies and automates the process of securing Solaris Operating Systems and is based on proven security best practices and practical customer site experience gathered over many years. This toolkit can be used to secure SPARC-based and x86/x64-based systems.
regards PRESSY
I hope this does not do anything to the oracle and webshpere installations...Any idea what this actually does? This tool kit? it should be a script which we run and it installs and configures something...What happens at the back?
Solaris Security Toolkit (JASS) FAQ
The blueprint might explain some ..
Solaris Security Toolkit (JASS) FAQ
Thanks guys...