SUN Microsystems has a bi-monthly patch report:
From this link:
http://sunsolve.sun.com/show.do?target=patchpage
You access this page:
http://sunsolve.sun.com/search/document.do?assetkey=1-34-10_x86-1

read more from this topic.....

Implementing security in crontab is something easy to do because all the tools are already available with the operating system, this info is usefull in Solaris as in Linux, and probably many other *nix like systems.
To give or deny access to crontab, this means, give the user permission to modify its own crontab file (see [...]

read more from this topic.....

When processes are managed, two concepts come up, they are the Real and the Effective ID of the process. To detail the difference, you have to understand the Difference between setuid / setgid / sticky bits.
The Real ID is the ID of the user that started the process, suppose that the process was started [...]

read more from this topic.....

To change a file permission the “chmod” command is used. This command has the following format in Solaris:
chmod [-fR] <permissions> <fileName>
-f : Is to force, if there is an error, nothing is displayed.
-R : Does the change recursivelly.
But let go to the point, the setuid bit permits that the process, produced by executing the [...]

read more from this topic.....

1. Enable rlogin
In the latest versions of Solaris Rlogin comes disabled by default. To enable it you have to use Service Control System:
svcs enable svc:/network/inetd:default
svcs enable svc:/network/login:rlogin
2. Secure rlogin
If you do not need the .rhosts file, delete them from the users home directory. This file has server names and ip addresses from where [...]

read more from this topic.....

To reject any attempt to login as root remotely (ssh, rcp, ftp) you have to modify the file:
/etc/default/login
And, uncomment the line that says:
CONSOLE=/dev/console
If console is set, root can only login from that device.

read more from this topic.....

Create the file /var/adm/loginlog, the failed login attempts are going to be logged in this file. It should be created as the root user, and then:

chmod 600 /var/adm/loginlog
chgrp sys /var/adm/loginlog

If the unsuccesful login attempts are bellow 5 for a user account, it would not log, but this can be setup while editing /etc/default/login and [...]

read more from this topic.....

If you have already read the Managing patches in Solaris (Part I) and now you want to know more, keep reading ! This time i am going to explain how to remove a patch, this action restores the previously saved files (except that you used the -d option with patchadd).
The syntax is [...]

read more from this topic.....

A patch is a collection of files and directories that may replace or update existing files and directories. There are some recommendations given by SUN to guide you by taking the decition if you should install a patch or not:
* Do the minimal changes as possible.
* Use the Sun Alert notifications (They are [...]

read more from this topic.....

This is a how-to install patches but with an condiment, we are going to download the patches with wget, this permits you to create all sort of automated tools to maintain your systems in every imaginable way.
First, lets patch our kernel, this is not so easy because there are many dependencies, but our work is [...]

read more from this topic.....