Unix/Solaris security?

Thread Tools Search this Thread
Operating Systems Solaris Unix/Solaris security?
# 1  
Old 11-28-2010
Unix/Solaris security?

Hello Admins,

I just have a curious question on unix passwords...

As unix passwords are encrypted, so any hacker can took those passwds from etc/shadow and decrypt them using any algorithms....and using decryption, he can get the passwd and easily get into the system.....

so how can unix be so secure as compared to windows...........

I am not talking about any firewalls and networking issue...just about the passwords.........

# 2  
Old 11-28-2010
Only the root user can read /etc/shadow. root should be restricted to administrators only. if a hacker has compromised root the /etc/shadow would be the least of your worries. the algorithms used to encrypt passwords are one-way hashes -- eg: they cannot be decrypted. the method to determine what passwords are in /etc/shadow are to encrypt a dictionary/word list using the salt used in the password hash and then compare the result against. This is why you do not want to use passwords based on dictionary or common words.
# 3  
Old 11-28-2010

So overall is hacker can't decrypt the passwords.....

and unix is secure... Is that so......
# 4  
Old 11-28-2010
if it is a very strong password it would be extremely difficult to crack with current computers available but if the hacker can read /etc/shadow you have much bigger problems then your passwords.

any system can be secured if setup and maintained properly. the same rules apply to any operating system.
# 5  
Old 11-29-2010
With solaris you can use different hashing algorithims in the shadow file by modifying /etc/security/policy.conf.

Solaris also has what is called trusted extensions that allow for security labels on processes and files. So a process has to have a security label at or above the label on the file to even be able to see it.

Solaris also has a virtualization technology called zones that allow virtual machines with their own security configuration without the overhead of running a completely seperate OS.

Solaris also has a robust RBAC system that can allow a managable way to devide administration roles.

Solaris has whats called BART to monitor files for tamparing.

Solaris has a configurable audit system that allows you to track certain operations.

This is a very brief and simplistic overview of some of the features that make Solaris very secure.

None of this matters without users educated on how to resist social engineering.
Login or Register to Ask a Question

Previous Thread | Next Thread

5 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

Solaris Security toolkit to mysql

Hi every body! Any one ever tried to inject the output of JASS into mysql or know of a method or script to do this Thk Dan (0 Replies)
Discussion started by: Ex-Capsa
0 Replies

2. Solaris

Solaris user Security implementation

Hi gurus, Need you help here: How we can implement I have edited /etc/default/login as TIMEOUT=60 But user is not Logged out after 60 sec inactivity. How we can implement this? e.g 3 bad passwords and the user is locked. And it is locked for certain period e.g 20 min. (1 Reply)
Discussion started by: Asteroid
1 Replies

3. Solaris

Solaris 9 security

Hi all, I have some questions for you about Solaris 9 security (if you also know the answers for Red Hat enterprise linux 3 et HP UX 11i, this would help too). I have already found many documents about general UNIX security, but some points are still obscure. Please take time to try to help... (3 Replies)
Discussion started by: Aaclof
3 Replies

4. Solaris

Solaris 8 security log issue

Hi all, I'm using Solaris 8 right now. Recently I've a task that needs to log down all unsuccessful login to a log for auditing purpose. What steps do I have to take to log down all login failure logs? Do I've to edit a certain file for it or done by the X-window mode? BTW, do I have to... (2 Replies)
Discussion started by: heero
2 Replies

5. News, Links, Events and Announcements

Solaris vs Linux Security

have a look: http://www.softpanorama.org/Solaris/Whitepaper/index.shtml#Executive_Summary gP (4 Replies)
Discussion started by: pressy
4 Replies
Login or Register to Ask a Question

Featured Tech Videos