Solaris Web services security: Install and configure a very basic operating system

Solaris Web services security: Install and configure a very basic operating system

The first step in configuring a secure Web services host is to install a minimum operating system configuration. While the installation and configuration is taking place, the system is not connected to any network. This prevents a malicious intruder from gaining access and corrupting the software base before it is secure.

Install a Minimal Operating System

To reduce the complexity and points of entry into the Web services host, do not install a graphical user interface. Instead, select the Core cluster and use the Customize to add SPARCompilers Bundled libC Cfront version (SUNWlibCf). Expand System and Network Administration and add System & Network Administration Framework (SUNWadmfw) and System administration core libraries (SUNWadmc). Finally, add terminal emulation support with Terminal Information (SUNWter).

Install the Recommended Patch Cluster

The latest consolidated patch file can be found at the Sunsolve web site (

    Requires Free Membership to View

    Login

    SearchSecurity.com members gain immediate and unlimited access to breaking industry news, virus alerts, new hacker threats, highly focused security newsletters, and more -- all at no cost. Join me on SearchSecurity.com today!

    Michael S. Mimoso, Editorial Director

    By submitting your registration information to SearchSecurity.com you agree to receive email communications from TechTarget and TechTarget partners. We encourage you to read our Privacy Policy which contains important disclosures about how we collect and use your registration and other information. If you reside outside of the United States, by submitting this registration information you consent to having your personal data transferred to and processed in the United States. Your use of SearchSecurity.com is governed by our Terms of Use. You may contact us at webmaster@TechTarget.com.

http://sunsolve.sun.com/). Note that the recommended minimal operating system configuration does not include all components covered by the recommended patch cluster. Patches in the cluster that affect components not installed will fail to install and will display an error code of 8. Do showrev –p to see what patches have been installed. Print a copy of this information and save it for future reference.


In this 12-part tip Unix expert Gary Smith breaks down the process of building and maintaining a highly secure Web services architecture on the Solaris platform.

Table of contents:
Part 1: Isolate the Web services host server
Part 2: Install and configure a very basic operating system
Part 3: Force the use of su to gain root access
Part 4: Disable trusted host relationships and create a warning banner
Part 5: Configuring user accounts
Part 6: Disabling and removing unnecessary accounts
Part 7: Configure network access control
Part 8: Configure network services
Part 9: Install OpenSSH, disable NFS and reboot
Part 10: Set file permissions
Part 11: Test the configuration
Part 12: Conclusion

This was first published in October 2002

Disclaimer: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.

Back to top