For the convenience of users wishing to be kept abreast of the latest security features in the just-released Solaris 10 OS 05/2009 (Update 7), Sun Distinguished Engineer Glenn Brunette has provided both an OpenDocument Format (ODF) and a pdf of his mediacast on what\'s new in security with the new release of Solaris 10 OS. Of particular interest, Brunette suggests, is a new slide focused on IPsec and IKE.

Brunette highlights the reduced and minimal configurations that are part of Solaris 10 OS Update 7 and that include:

• Some environments remove or simply do not install software packages that are not needed for business or technical reasons, with the result that there is less software to install, upgrade, patch, and maintain, and consequent reduced exposure to security vulnerabilities. He refers readers to Sun\'s Rules of Engagement for the Support of Reduced or Minimal Configurations.

• Solaris Package Companion can be used to understand software package relationships and dependencies.

Other security aspects of the new Solaris OS release that Brunette covers include:

• Cryptographically signed ELF objects
• Service Management Facility
• Solaris Secure by Default
• User Rights Management
• Process privileges
• Zones
• ZFS data integrity and data security
• ZFS delegated administration
• Cryptographic framework
• Kerberos
• Secure shell
• IPsec/IKE
• TCP wrappers
• Basic audit and reporting tool
• Solaris fingerprint database
• Solaris audit
• Solaris Trusted Extensions
• Extending Solaris 10 security features

More Information

Sun Security Home

OpenSolaris Security Community

Sun Security Coordination Center

Sun Security BluePrints

Sun Security Bloggers [...read more...]

		fullsource
Print Email Current Profile Archive Blog Generate newsletter