Table of Contents
Advertisement
System Guide
Common Controller
Network parameters secured
Sun's nddconfig security tool is run. For additional information,
view Sun's document, Solaris Operating Environment Network
Settings for Security, at http://www.sun.com/solutions/blueprints/
1200/network-updt1.pdf.
Executable stacks disabled
The system stack is made non-executable. This is done so
security exploitation programs cannot take advantage of the
Solaris OE kernel executable system stack and thereby attack
the system
NFS port monitor restricted
The NFS server normally accepts requests from any port
number. The NFS Server is altered to process only those
requests from privileged ports. Note that with the high security
setting, NFS is disabled; however if the service is re-enabled
manually the port restriction will still apply.
Remote CDE login disabled
The Remote CDE login is disabled.
DocuSP router capabilities disabled
The DocuSP router capabilities is disabled (empty /etc/notrouter
file created).
Security warning banners
Security warning banners are displayed when a user logs in or
telnets into the DocuSP server. This message explains that only
authorized users should be using the system and that any others
face the possibility of being monitored by law enforcement
officials.
NOTE: DRW (DocuSP Remote Workflow) is not impacted by
security settings.
Security and Network Setup
4-9
Advertisement
Table of Contents
