System Security on Solaris
1) Latest patches (Download from Oracle Site)
# patchadd <patchname>
2) Access to the System :
/etc/default/login
sshd.config
3) Limited su (Super User) acess.
4) Stop unnecessary service at run level
/etc/inetd.config : finger, discard, daytime, charger, tftp etc
5) Make the below changes in Kernel file
vi /etc/system
user_exec_stack=0
user_exec_stack_log=0
set noexec_user_stack=1
set noexec_user_stack_log=1
6) Make the changes in shadow file
vi /etc/shadow
system - put as LK
uucp - Put as LK
7) Create the Entry for the logs
vi /etc/default/cron - Create a file if not there
CRONLOG=YES
1) Latest patches (Download from Oracle Site)
# patchadd <patchname>
2) Access to the System :
/etc/default/login
sshd.config
3) Limited su (Super User) acess.
4) Stop unnecessary service at run level
/etc/inetd.config : finger, discard, daytime, charger, tftp etc
5) Make the below changes in Kernel file
vi /etc/system
user_exec_stack=0
user_exec_stack_log=0
set noexec_user_stack=1
set noexec_user_stack_log=1
6) Make the changes in shadow file
vi /etc/shadow
system - put as LK
uucp - Put as LK
7) Create the Entry for the logs
vi /etc/default/cron - Create a file if not there
CRONLOG=YES
No comments:
Post a Comment