Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Need jass hardening documentation
Operating Systems Solaris Need jass hardening documentation Post 302773117 by hiddenshadow on Wednesday 27th of February 2013 10:53:22 AM
Old 02-27-2013
Need jass hardening documentation
Hi,

Where I could find information about "Jass hardening" for Solaris10?

Because, I change the /opt/SUNWjass/Files/etc/syslog.conf file. But yet I don't know if I must restart the jass (and how?) or I must to copy /opt/SUNWjass/Files/etc/syslog.conf to /etc/syslog.conf?

Thanks for your help and best regards
 

9 More Discussions You Might Find Interesting

1. Solaris

Jass & SMC login problem

After I run Jass , I can bring up the SMC GUI, but it wont let me log in as root. It works without Jass being run. Does anyone know what in Jass disables this. I have tried removing some things from jass like remote-root-login to no avail. Any hints would be greatly appreciated. I ram running... (0 Replies)
Discussion started by: garydeena
0 Replies

2. Solaris

Hardening Solaris 10

So I've just done my first install of Solaris. I installed it on an x86 system and am now in the processing of figuring out what I need to do to 'harden' it. I've got the Security kit downloaded (jass) but I am not sure what to do with the .tar file. I can't seem to find any easy steps to... (6 Replies)
Discussion started by: flood
6 Replies

3. Solaris

Hardening Solaris

What do we need to do to harden a freshly installed solaris OS? like disable telnet, no ftp for root etc...What all services you need to stop? How to check what ports are open? etc etc....please provide all tips that come to your mind...thanks:) (5 Replies)
Discussion started by: rcmrulzz
5 Replies

4. Solaris

Jass Toolkit 4.2

I have Jass Toolkit 4.2 for Solaris 10. If I run #jass-execute -d secure.driver and then enable certain services which were disabled by jass, such as ssh, how do I incorporate those changes to jass so that when i rerun jass-execute secure-driver, it does not complain. Any suggestions please,... (1 Reply)
Discussion started by: Tirmazi
1 Replies

5. UNIX for Dummies Questions & Answers

JASS Development

with regard to JASS, some time ago (1.5 years) I took it's 4.2 version and dig it quite much and created customized and more tight (although still 100% usefull) version of the framework to be used in company i worked for (I think they never used it after I left, however). I also found that some... (0 Replies)
Discussion started by: togr
0 Replies

6. Solaris

Solaris Hardening - SunJass

Hi guys, Is there any script or program which i can use to verify that my hardening setting is all correct ? Recently i am given a task to make sure my Sun servers are all harden properly though sunjass was already introduced. I need to generate a report to convince my manager that the settings... (0 Replies)
Discussion started by: ahlude
0 Replies

7. SuSE

Hardening Suse11 sp1

Currently we are hardening our Solaris server using the Sun provided Jass Security tool kit. How Can I implement the same security level on SUSE11 SP1? Are there any tools similar/equivalent to Jass for SUSE11 SP1? Tanks and Regards (1 Reply)
Discussion started by: vcfko
1 Replies

8. UNIX for Advanced & Expert Users

SuSe Linux Hardening

We've got a FTP server that's open to the public network and its running on Suse SUSE Linux Enterprise Server 11 (x86_64) SP2 Now, since it's an FTP server I can't disable that service, but how else do I harden this server from attacks from outside? I am thinking of disabling the firewall and... (3 Replies)
Discussion started by: hedkandi
3 Replies

9. Cybersecurity

C-ICAP Hardening

Does anyone have any experience hardening the c-icap.conf file? Here is the default config file, it has a lot of options; sorry about how long it is. I have removed some entries that were not needed as well, but it is still so long :D. Any help is much appreciated as I have never dealt with ICAP. ... (0 Replies)
Discussion started by: savigabi
0 Replies

LEARN ABOUT DEBIAN

hardened-cc

HARDENED-CC(1)							 Debian GNU/Linux						    HARDENED-CC(1)

NAME

       hardened-cc - gcc wrapper to enforce hardening toolchain improvements

SYNOPSIS

       export DEB_BUILD_HARDENING=1

       gcc ...

DESCRIPTION

       The  hardened-cc  wrapper  is  normally	used by calling gcc as usual when DEB_BUILD_HARDENING is set to 1. It will configure the necessary
       toolchain hardening features. By default, all features are enabled. If a given feature does not work correctly and needs  to  be  disabled,
       the corresponding environment variables mentioned below can be set to 0.

ENVIRONMENT

       DEB_BUILD_HARDENING=1
	      Enable hardening features.

       DEB_BUILD_HARDENING_DEBUG=1
	      Print the full resulting gcc command line to STDERR before calling gcc.

       DEB_BUILD_HARDENING_STACKPROTECTOR=0
	      Disable stack overflow protection. See README.Debian for details.

       DEB_BUILD_HARDENING_RELRO=0
	      Disable read-only linker sections. See README.Debian for details.

       DEB_BUILD_HARDENING_FORTIFY=0
	      Don't fortify several standard functions. See README.Debian for details.

       DEB_BUILD_HARDENING_PIE=0
	      Don't build position independent executables. See README.Debian for details.

       DEB_BUILD_HARDENING_FORMAT=0
	      Disable unsafe format string usage errors. See README.Debian for details.

NOTES

       System-wide settings can be added to /etc/hardening-wrapper.conf, one per line.

       The  real gcc symlinks are renamed gcc.real, and a diversion is registered with dpkg-divert(1).	Thus hardened-cc's idea of the default gcc
       is dictated by whatever package installed /usr/bin/gcc.

SEE ALSO

       hardened-ld(1) gcc(1)

Debian Project							    2008-01-08							    HARDENED-CC(1)
All times are GMT -4. The time now is 11:15 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy