Investigation Shows Solaris Can Comply with STIG for Unix/Linux Systems January 19, 2011,
Volume 155, Issue 3
Comparing the capabilities of Solaris 11 Express with the requirements of the U.S. DoD Security Technical Implementation Guidelines (specifically the STIG document for Unix/Linux operating systems), Jim Laurent blogs that, with one exception, Solaris 11 Express can be made to come into compliance with the Defense Information Systems Agency's STIG. That exception involves the default ZFS root file system which currently does not allow /var to be mounted as a separate filesystem as required by one of the STIG items. Laurent has notified Solaris Engineering of this fact. He cautions that his investigation is altogether unofficial has is not sanctioned by either Oracle or DISA.