Download  Print this page

Solaris File Permissions Secured; Network And Name Service Changes; Disabling Secure Name Service Databases; Multicast Routing Disabled - Xerox 701P40211 System Manual

Document services platform series common controller.
Hide thumbs


Security and Network Setup

Solaris file permissions secured

Network and name service changes

The fix-modes utility (from the Solaris Security Toolkit) adjusts
group and world write permissions. It is run with the '-s' option to
secure file permissions for Solaris files that were created at
install time only. Customer-generated files will not be affected.
NOTE: When this command is run, a file called /var/sadm/
install/content.mods is left. Do not delete this file. It contains
valuable information needed by fix modes to revert the changes
to the system file permissions if the security setting is changed
back to medium.

Disabling secure name service databases

The following databases are disabled when Security is invoked:

Multicast routing disabled

Multicast is used to send data to many systems at the same
timewhile using one address.

OS and host information hidden

The ftp, telnet and sendmail banners are set to null so that users
in cannot see the hostname and OS level. (Note that all of
these services are prohibited with a 'high' security setting, but if
they are re-enabled manually the hostname information will
remain hidden.)

Sendmail daemon secured

Sendmail is forced to perform only outgoing mail. No incoming
mail will be accepted.
System Guide
Common Controller


   Related Manuals for Xerox 701P40211

Comments to this Manuals

Symbols: 0
Latest comments: