System News
back1 2 3 4 5 6 7 8 9 10 11 next
Archived Security Articles
04 Jun 2014
open to premium members only
The Top Ten Security Top Ten Lists [36754]
By Troy Kitch

Troy writes, "As a marketer, we're always putting together the top 3, or 5 best, or an assortment of top ten lists. So instead of going that route, I've put together my top ten security top ten lists. These are not only for security practitioners, but also for the average Joe/Jane; because who isn't concerned about security these days? Now, there might not be ten for each one of these lists, but the title works best that way. Top Ten Security Top Ten Lists

Starting with my number ten (in no particular order):..."
(Get More Information . .)

04 Jun 2014
open to premium members only
Unix: Why you should love nmap [36755]
By Sandra Henry-Stocker

Sandra writes, "You have to love nmap. No other tool is set up to give you as quick a view of your network and at so little cost. The name stands for "network mapper" and it can tell you a lot about the network you are managing, including what systems are on it, what's running on those systems, and quite a bit of services you might need to worry about. It's a very basic tool in some ways. You hand it a few command line parameters and it runs around your network making connections and reporting on what it is able to discover. Plus, it's surprisingly efficient (unless you inadvertently ask for too much information) and is easy to install and to use..."
(Get More Information . .)

28 May 2014
open to premium members only
Oracle Sun Solaris 11.1 Completes EAL4+ Common Criteria Evaluation [36635]
By Joshua Brickman

"Oracle is pleased to announce that the Oracle Solaris 11.1 operating system has achieved a Common Criteria certification at Evaluation Assurance Level (EAL) 4 augmented by Flaw Remediation under the Canadian Communications Security Establishment's (CSEC) Canadian Common Criteria Scheme (CCCS). EAL4 is the highest level achievable for commercial software, and is the highest level mutually recognized by 26 countries under the current Common Criteria Recognition Arrangement (CCRA).

Oracle Solaris 11.1 is conformant to the BSI Operating System Protection Profile v2.0 with the following four extended packages. (1) Advanced Management, (2) Extended Identification and Authentication, (3) Labeled Security, and (4) Virtualization..."
(Get More Information . .)

26 May 2014
open to premium members only
Security Access Control With Solaris Virtualization [36634]
By Thierry Manfe

Numerous Solaris customers consolidate multiple applications or servers on a single platform. The resulting configuration consists of many environments hosted on a single infrastructure and security constraints sometimes exist between these environments. Recently, a customer consolidated many virtual machines belonging to both their Intranet and Extranet on a pair of SPARC Solaris servers interconnected through Infiniband. Virtual Machines were mapped to Solaris Zones and one security constraint was to prevent SSH connections between the Intranet and the Extranet. This case study gives us the opportunity to understand how the Oracle Solaris Network Virtualization Technology - a.k.a. Project Crossbow - can be used to control outbound traffic from Solaris Zones.
(Get More Information . .)

23 May 2014
open to premium members only
Overview of Solaris Zones Security Models [36519]
By Darren Moffat

Darren writes, "Over the years of explaining the security model of Solaris Zones and LDOMs to customers "security people" I've encountered two basic "schools of thought". The first is "shared kernel bad" the second is "shared kernel good".

Which camp is right ? Well both are, because there are advantages to both models.

If you have a shared kernel there the policy engine has more information about what is going on and can make more informed access and data flow decisions, however if an exploit should happen at the kernel level it has the potential to impact multiple (or all) guests.

If you have separate kernels then a kernel level exploit should only impact that single guest, except if it then results in a VM breakout..."
(Get More Information . .)

06 May 2014
open to premium members only
OpenSSL on Oracle Solaris 11.2 [36273]
which version of OpenSSL is delivered with Oracle Solaris 11.2?

Misaki Miyashit writes, "The answer is the latest and greatest OpenSSL 1.0.1g!

Now that I answered 80% of the questions you may have with regard to OpenSSL, I would like to announce three major features added to the Oracle Solaris 11.2:"

-Inlined T4/T4+ instructions support and Engines

  • OpenSSL FIPS-140 version support
  • OpenSSL Thread and Fork Safety

Read on for details.
(Get More Information . .)

 
back1 2 3 4 5 6 7 8 9 10 11 next









News and Solutions for Users of Solaris, Java and Oracle's Sun hardware products
30,000+ Members – 30,000+ Articles Published since 1998