- System Administration Guide: Security Services

Maintaining Physical Security

eeprom command

Controlling Access to System Hardware

eeprom.rpt file

eeprom Check

Format of ASET Report Files

effective privilege set,

How Privileges Are Implemented

efficiency, auditing and,

Auditing Efficiently

eject command, device cleanup and,

Device-Clean Scripts

elfsign command

description

Scope of the Oracle Solaris Cryptographic Framework

Binary Signatures for Third-Party Software

enabling

audit service,

How to Enable the Audit Service

audit service task map,

Configuring and Enabling the Audit Service (Task Map)

auditing,

How to Enable the Audit Service

cryptographic mechanisms,

How to Prevent the Use of a User-Level Mechanism

device allocation

How to Make a Device Allocatable

Kerberized applications only,

How to Enable Only Kerberized Applications

kernel software provider use,

How to Prevent the Use of a Kernel Software Provider

keyboard abort,

How to Disable a System's Abort Sequence

mechanisms and features on hardware provider,

How to Disable Hardware Provider Mechanisms and Features

encrypt command

description,

User-Level Commands in the Oracle Solaris Cryptographic Framework

error messages,

How to Generate a Symmetric Key by Using the dd Command

syntax,

troubleshooting,

How to Log In to a Remote Host With Solaris Secure Shell

encrypting

communications between hosts,

encrypt command,

Protecting Files With Encryption

files

Protecting Files With the Oracle Solaris Cryptographic Framework (Task Map)

Solaris Secure Shell (Overview)

network traffic between hosts,

passwords,

Changing the Password Algorithm (Task Map)

private key of NIS user,

How to Set Up a Diffie-Hellman Key for an NIS User

Secure NFS,

DES Encryption With Secure NFS

using user-level commands,

User-Level Commands in the Oracle Solaris Cryptographic Framework

encryption

algorithms

Kerberos and,

Kerberos Encryption Types

DES algorithm,

DES Encryption With Secure NFS

generating symmetric key

using the dd command,

How to Generate a Symmetric Key by Using the dd Command

using the pktool command,

How to Generate a Symmetric Key by Using the pktool Command

installing third-party password modules,

How to Install a Password Encryption Module From a Third Party

list of password algorithms,

Password Encryption

modes

Kerberos and,

Kerberos Encryption Types

password algorithm,

Password Encryption

privacy service,

What Is the Kerberos Service?

specifying algorithms in ssh_config file,

Changing the Password Algorithm (Task Map)

specifying password algorithm

locally,

specifying password algorithms in policy.conf file,

Password Encryption

types

Kerberos and

Kerberos Encryption Types

Using Kerberos Encryption Types

with -x option,

Overview of Kerberized Commands

ending, signal received during auditing shutdown,

Environment Variables Check

env.rpt file

Format of ASET Report Files

environment variables

See also variables

ASETDIR (ASET),

ASETDIR Environment Variable

ASETSECLEVEL (ASET),

ASETSECLEVEL Environment Variable

audit token for,

exec_env Token

CKLISTPATH_level (ASET)

Specifying Directories for System Files Checks Task: CKLISTPATH

CKLISTPATH_level Environment Variables

overriding proxy servers and ports,

How to Set Up Default Connections to Hosts Outside a Firewall

PATH,

Preventing Unintentional Misuse of Machine Resources

PERIODIC_SCHEDULE (ASET)

Scheduling ASET Execution: PERIODIC_SCHEDULE

PERIODIC_SCHEDULE Environment Variable

presence in audit records

Determining Audit Policy

Audit Token Formats

Solaris Secure Shell and,

Solaris Secure Shell and Login Environment Variables

summary (ASET),

ASET Environment Variables

TASKS (ASET)

Choosing Which Tasks to Run: TASKS

TASKS Environment Variable

UID_ALIASES (ASET)

The uid_aliases File

Specifying an Aliases File: UID_ALIASES

UID_ALIASES Environment Variable

use with ssh-agent command,

Solaris Secure Shell Commands

YPCHECK (ASET)

Extending Checks to NIS+ Tables: YPCHECK

YPCHECK Environment Variable

equal sign (=), file permissions symbol,

File Permission Modes

error messages

encrypt command,

Kerberos,

Kerberos Error Messages

with kpasswd,

Changing Your Password

errors

allocate error state,

Allocate Error State

audit directories full

auditd Daemon

internal errors,

EscapeChar keyword, ssh_config file,

How to Create a Dial-Up Password

/etc/d_passwd file

and /etc/passwd file,

Dial-Up Logins

creating,

disabling dial-up logins temporarily,

How to Temporarily Disable Dial-Up Logins

/etc/default/kbd file,

How to Disable a System's Abort Sequence

/etc/default/login file

description,

How to Monitor All Failed Login Attempts

restricting remote root access,

How to Restrict and Monitor Superuser Logins

Solaris Secure Shell and,

Solaris Secure Shell and Login Environment Variables

/etc/default/su file

displaying su command attempts,

How to Restrict and Monitor Superuser Logins

monitoring access attempts,

How to Restrict and Monitor Superuser Logins

monitoring su command,

How to Monitor Who Is Using the su Command

/etc/dfs/dfstab file

security modes,

How to Set Up a Secure NFS Environment With Multiple Kerberos Security Modes

sharing files,

Sharing Files Across Machines

/etc/dialups file, creating,

How to Create a Dial-Up Password

/etc/group file, ASET checks,

User and Group Checks

/etc/hosts.equiv file, description,

/etc/krb5/kadm5.acl file, description,

/etc/krb5/kadm5.keytab file, description,

/etc/krb5/kdc.conf file, description,

/etc/krb5/kpropd.acl file, description,

/etc/krb5/krb5.conf file, description,

/etc/krb5/krb5.keytab file, description,

/etc/krb5/warn.conf file, description,

/etc/logindevperm file,

Remote Logins

/etc/nologin file

description,

How to Temporarily Disable User Logins

disabling user logins temporarily,

/etc/nsswitch.conf file,

Maintaining Login Control

/etc/pam.conf file, Kerberos and,

Diffie-Hellman Authentication and Secure RPC

/etc/passwd file, ASET checks,

User and Group Checks

/etc/publickey file, DH authentication and,

/etc/security/audit_event file, audit events and,

Audit Events

/etc/security/audit_startup file,

audit_startup Script

/etc/security/audit_warn script,

How to Install a Password Encryption Module From a Third Party

/etc/security/bsmconv script,

device_maps File

description,

bsmconv Script

/etc/security/crypt.conf file

changing with new password module,

third-party password modules,

How to Install a Password Encryption Module From a Third Party

/etc/security/device_allocate file,

device_allocate File

/etc/security/device_maps file,

device_maps File

/etc/security/policy.conf file, algorithms configuration,

How to Specify an Algorithm for Password Encryption

/etc/ssh_host_dsa_key.pub file, description,

/etc/ssh_host_key.pub file, description,

/etc/ssh_host_rsa_key.pub file, description,

/etc/ssh/shosts.equiv file, description,

Client Configuration in Solaris Secure Shell

/etc/ssh/ssh_config file

configuring Solaris Secure Shell,

description,

Host-Specific Parameters in Solaris Secure Shell

host-specific parameters,

keywords,

override,

/etc/ssh/ssh_host_dsa_key file, description,

/etc/ssh/ssh_host_key file

description,

override,

/etc/ssh/ssh_host_rsa_key file, description,

Maintaining Known Hosts in Solaris Secure Shell

/etc/ssh/ssh_known_hosts file

controlling distribution,

description,

override,

Maintaining Known Hosts in Solaris Secure Shell

secure distribution,

/etc/ssh/sshd_config file

description,

keywords,

/etc/ssh/sshrc file, description,