Hi all,
I have some questions for you about Solaris 9 security (if you also know the answers for Red Hat enterprise linux 3 et HP UX 11i, this would help too). I have already found many documents about general UNIX security, but some points are still obscure.
Please take time to try to help me, I would be very grateful. Don't hesitate to explain things even if they seem obvious to you, my knowledge in UNIX's world being very limited...
1) My first question is about the single user mode. I would like to disallow anybody to boot as single user without prompting a password. Do you know how to do that ?
2) How can we close any connection after a certain period of inactivity ?
3) How can I limit the amount of information given to the user when he is establishing a connection to a server ? (typically not giving the version of OS, etc.)
4) How to make a password respect a predefined policy ? (complexity, aging). I have seen the PAM cracklib module, but is it possible to do the same things without PAM
5) General question : if you had to make a solaris system very secure, which services would you allow and which one would you make unavailable ?
Thank you for your help. Please answer even if you only know the answer to one question. It will help. And forgive me for my english (I am french).
Bye,
Aaclof