[rescue] Quick request: Pointers for securing Solaris 9 server...
Brian Howe
bwhowe at gmail.com
Thu Sep 2 14:29:53 CDT 2004
Well, you could start here:
http://www.nsa.gov/snac/downloads_all.cfm?MenuID=scg10.3.1
and here:
http://www.mgmg-interactive.com/mgmg/
They're Solaris 8, but a good start none-the-less.
This is for real hardening (as in firewall) but it will also help you
get where you want to go:
http://hackersplayground.org/papers/armoring_solaris1.html
I would also suggest googling for hardening BIND servers and possibly
going to some hacker sites like packetstorm to see what
vulnerabilities are out there for the version of BIND you are
installing. That way you can know what you are up agains.
Just my $.02
Brian
On Thu, 2 Sep 2004 19:15:07 +0000, Lionel Peterson
<lionel4287 at verizon.net> wrote:
> Hello all,
>
> I'm about to put a Solaris 9 server up as my DMZ server off my DSL line, and I was wondering if anyone had some pointers to guidance material on securing/hardening a Solaris 9 install, I hope to run HTTP, FTP, and SSH (all as provided/patched by Sun), no Telnet or other services are needed, and I'm in need of a reasonable "How To" (short of buying a heavy security book and working my way through it)...
>
> Pointers to useful sites, write-ups appreciated - please send off-list and I'll provide a summary if there is interest.
>
> Thanks in advance,
>
> Lionel
> _______________________________________________
> rescue list - http://www.sunhelp.org/mailman/listinfo/rescue
>
--
Brian Howe
bwhowe at gmail.com
-----------------
- press to test
- release to detonate
More information about the rescue
mailing list