Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Hardening Solaris
Operating Systems Solaris Hardening Solaris Post 302218434 by rcmrulzz on Friday 25th of July 2008 05:46:28 AM
Old 07-25-2008
I hope this does not do anything to the oracle and webshpere installations...Any idea what this actually does? This tool kit? it should be a script which we run and it installs and configures something...What happens at the back?Smilie
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Any leads to hardening UNIX

Hi! I am trying to get info/best practices/how-to harden unix, especially solaris! Appreciate any leads please..................... (3 Replies)
Discussion started by: sdharmap
3 Replies

2. Solaris

Hardening Solaris 10

So I've just done my first install of Solaris. I installed it on an x86 system and am now in the processing of figuring out what I need to do to 'harden' it. I've got the Security kit downloaded (jass) but I am not sure what to do with the .tar file. I can't seem to find any easy steps to... (6 Replies)
Discussion started by: flood
6 Replies

3. UNIX for Dummies Questions & Answers

sysctl help needed.(Server Hardening).

As per Hardening guide for the server. ICMP Broadcast Response: The kernel parameter icmp_echo_ignore_broadcasts must match to 1 However when i check the value of icmp_echo_ignore_broadcasts it thrown an error as unkonwn key. # sysctl icmp_echo_ignore_broadcasts error:... (2 Replies)
Discussion started by: pinga123
2 Replies

4. Solaris

Solaris Hardening - SunJass

Hi guys, Is there any script or program which i can use to verify that my hardening setting is all correct ? Recently i am given a task to make sure my Sun servers are all harden properly though sunjass was already introduced. I need to generate a report to convince my manager that the settings... (0 Replies)
Discussion started by: ahlude
0 Replies

5. SuSE

Hardening Suse11 sp1

Currently we are hardening our Solaris server using the Sun provided Jass Security tool kit. How Can I implement the same security level on SUSE11 SP1? Are there any tools similar/equivalent to Jass for SUSE11 SP1? Tanks and Regards (1 Reply)
Discussion started by: vcfko
1 Replies

6. UNIX for Advanced & Expert Users

SuSe Linux Hardening

We've got a FTP server that's open to the public network and its running on Suse SUSE Linux Enterprise Server 11 (x86_64) SP2 Now, since it's an FTP server I can't disable that service, but how else do I harden this server from attacks from outside? I am thinking of disabling the firewall and... (3 Replies)
Discussion started by: hedkandi
3 Replies

7. Solaris

Need jass hardening documentation

Hi, Where I could find information about "Jass hardening" for Solaris10? Because, I change the /opt/SUNWjass/Files/etc/syslog.conf file. But yet I don't know if I must restart the jass (and how?) or I must to copy /opt/SUNWjass/Files/etc/syslog.conf to /etc/syslog.conf? Thanks for your... (2 Replies)
Discussion started by: hiddenshadow
2 Replies

8. Cybersecurity

C-ICAP Hardening

Does anyone have any experience hardening the c-icap.conf file? Here is the default config file, it has a lot of options; sorry about how long it is. I have removed some entries that were not needed as well, but it is still so long :D. Any help is much appreciated as I have never dealt with ICAP. ... (0 Replies)
Discussion started by: savigabi
0 Replies

9. Linux

Password hardening using pam

Hi We have a requirement to vary the minimum password criteria by the group to which a user belongs. For example a standard user should have a password with a minimum length of 12 and containing a mix of characters whereas an administrator should have a password with a minimum length of 14... (1 Reply)
Discussion started by: gregsih
1 Replies

10. HP-UX

Security hardening for standard HP-UX users

Hi, The standard accounts that are created during the HP-UX installation, eg, bin,adm,daemon,uucp,lp,hpdb and nobody have their own shell. Will there be any impact if we change these user's shell to /bin/false? Like processes get interrupted, files cannot be generated, etc. Regards (3 Replies)
Discussion started by: anaigini45
3 Replies

LEARN ABOUT DEBIAN

applypatch

APPLYPATCH(1p)						User Contributed Perl Documentation					    APPLYPATCH(1p)

NAME

       applypatch - apply 'makepatch' generated script to update a source tree

SYNOPSIS

       applypatch [ options ] patch-kit

DESCRIPTION

       Applypatch applies a patch kit as generated by the makepatch program. It performs the following actions:

       o   First, it will extensively verify that the patch kit is complete and did not get corrupted during transfer.

       o   Then it will apply some heuristics to verify that the directory in which the patch will be applied does indeed contain the expected
	   sources.

	   If a corruption or verification error is detected, applypatch exits without making changes.

       o   If the kit is okay, and the directory seems to be the right one: it creates new files and directories as necessary.

       o   Then it runs the patch program to apply the patch to the source files.

       o   Upon completion, obsolete files, directories and .orig files are removed, file modes of new files are set, and the timestamps of all
	   patched files are adjusted.

Applypatch arguments
       Applypatch takes one argument, the name of the patch kit as generated by makepatch. If no name is specified, the patch kit is read from
       standard input.

Applypatch options
       Options are matched case insensitive, and may be abbreviated to uniqueness.

       -directory dir
	   The name of the source directory to be patched.

       -check
	   Perform the checks on the patch kit and patch directory, but do not make any changes.

       -force
	   Force continuation of the patch process even when corruption or verification errors are detected. This is very dangerous!

       -retain
	   Do not remove patch backup files (with extension ".orig") upon completion.

       -patch cmd
	   The patch command to be used. Default is ""patch -p0 -N"".  Additionally, a ""-s"" will be added unless option -verbose was specified.

       -verbose
	   This option will cause applypatch and the patch program to emit verbose progress information.

       -quiet
	   This option will cause applypatch and the patch program to emit no progress information, only error messages.

Environment variables
       SIMPLE_BACKUP_SUFFIX
	   The suffix used by (some versions of?) patch to back up the originals of patched files. Upon completion, these files are removed by
	   applypatch unless the option -retain was specified.	Default value if "".orig"".

SEE ALSO

       makepatch(1), diff(1), patch(1), perl(1), rm(1).

AUTHOR AND CREDITS

       This program is written by Johan Vromans <jvromans@squirrel.nl>.

       See section AUTHOR AND CREDITS of the makepatch program for an extensive list of people that helped one way or another in the makepatch /
       applypatch project.

COPYRIGHT AND DISCLAIMER

       This program is Copyright 1992,1999,2006 by Squirrel Consultancy. All rights reserved.

       This program is free software; you can redistribute it and/or modify it under the terms of either: a) the GNU General Public License as
       published by the Free Software Foundation; either version 1, or (at your option) any later version, or b) the "Artistic License" which
       comes with Perl.

       This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of
       MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See either the GNU General Public License or the Artistic License for more details.

perl v5.10.0							    2006-10-08							    APPLYPATCH(1p)
All times are GMT -4. The time now is 01:01 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy