Maintaining and Monitoring System Security

Language:

The following tasks maintain and monitor access and use of the system, data, and adherence to your site's security requirements.

Table 3-1 Maintaining and Monitoring the System Task Map

Task	Description	For Instructions
Verify the packages on the system.	Checks that the packages after an update are identical to the source packages.	How to Verify Your Packages
Verify file integrity.	After configuration, compares BART manifests at regular intervals to ensure that only files that should be changed are changed.	Verifying File Integrity by Using BART
Find rogue files.	Locates the potentially unauthorized use of the `setuid` and `setgid` permissions on programs.	How to Find Files With Special File Permissions in Securing Files and Verifying File Integrity in Oracle Solaris 11.2
Review audit logs regularly.	Locates unusual access and use of the system.	Using the Audit Service
Review audit logs for login and logout events in real time.	Identifies attempted breaches near to the time that the attempts occur.	Monitoring Audit Records in Real Time
Run compliance tests.	Assesses the system's compliance to security benchmarks.	Oracle Solaris 11.2 Security Compliance Guide and the `compliance`(1M) man page