Each service needs to be looked at individual for each server - one server may need some of the services while another does not. Solaris Security Guide - one of many you can find with a search on the Internet. Suggest you also look on some of the many SUN sites.
Example - some of the services you want to turn off are
rpc.metad
rpc.metamedd
rpc.metamhd
These are needed if you are using DiskSuite - if you aren't using it to mirror/stripe disks, then yes, you could turn it off.
Others, like finger and sprayd you could turn off with probably no issue as they are not really needed on servers (as far as I have ever seen).
Understand that these services should be turned off in /etc/inetd.conf (for the most part) and not removed/commented from /etc/services.
Here is an example of inetd.conf from one of the servers I work on - I did not add the services that are turned on, just the ones that are commented out - long list!
Hi,
Few services not starting on new build Solaris 11 non-global zone. I uninstalled zone and reinstalled and still same issue, while global zone is working fine.
smpt service is going into maintenance mode and /var/svc/log/network-smtp:sendmail.log shows that it tries and then dead
... (0 Replies)
I normally use "chkconfig" to configure start up services in a particular run level.....
But i don't know how to do it in solaris 10.... please help me !!! (2 Replies)
Hello
We have recently been through an audit of our solaris servers.
All our solaris servers are running version 10.
We have been told to close down all the services and we have closed what we could by using svcadm disable
We only wish to let ssh and the ftp service to run.
Below is a... (3 Replies)
I've installed Solaris 10 (05-08) on a SPARC platform
During the installation I was prompted with the question below. I selected yes to enable remote services.
Does anyone know what services this option enables?
- Enabling remote services ----------------------------------------
Would... (6 Replies)
Hi,
I have 3 solaris servers. Two servers of differnet network and one gateway.
Server1 --> 192.168.0.1 --> Solaris 9
Server2 --> 10.27.40.2 --> Solaris 10
Server3 --> Iface1 --> 192.168.0.5 --> Solaris 10 --> Gateway
Iface2 --> 10.27.40.5
Now I am able to ssh... (36 Replies)
dear all,
i have 2 questions on solaris 10. I noticed telnet/ftp/print services suddenly being stopped on one server. How can i trace this issue and find a resolution. Other issue is i need to enable rsh within the same host. enabled the service rexec and have created the .rhosts and have a + in... (4 Replies)
I want to add auto startup and shutdown script to Solaris 10's legacy services as they run in Solaris 9 or in Linux.
To make this work, I created the crontrol script in /etc/init.d and then link it to /etc/rc0.d and /etc/rc2.d directories. rc0.d is for shutdown and rc2.d is for srat. After I... (15 Replies)