Enhancements to Machine Security in the Solaris 10 Release
Since the Solaris 9 release, the following features have been introduced to enhance system security:
-
Strong password encryption is available and configurable. For more information, see Password Encryption.
-
Device policy is enforced with privileges. For more information, see Device Policy (Overview).
For device allocation, the /etc/security/dev directory might not be supported in future releases of the Solaris OS.
-
The Basic Audit Reporting Tool (BART) can monitor the authenticity of the files on your system. For more information, see Chapter 5, Using the Basic Audit Reporting Tool (Tasks).
-
Files can be protected with strong encryption. For more information, see Protecting Files With Encryption.
-
Privileges enforce process rights at the kernel level. For more information, see Privileges (Overview).
-
The Solaris Cryptographic Framework centralizes cryptographic services for providers and for consumers. For more information, see Chapter 13, Solaris Cryptographic Framework (Overview).
-
The PAM framework provides functionality for many programs, such as Solaris Secure Shell. For more information, see Changes to PAM for the Solaris 10 Release.
-
Solaris zones and resource management control access to machine resources. For more information, see System Administration Guide: Oracle Solaris Containers-Resource Management and Oracle Solaris Zones.
- © 2010, Oracle Corporation and/or its affiliates