YASSP
SECclean package,
Introduction
The goal of these packages is to configure or modify your
system to make it more secure. It will deal with different
types of files:
- System files: To make your system more secure, to
enable more loging restrict permission, turn off some
unsecure services and to uniform your installations, system
files will have to be deleted, created or edited.
- RC files: RC files (under
/etc/init.d/ with a link from
/etc/rc?.d/) are under Solaris one standard way
of starting services or to make some system configuration at
the boot time. As our goal is to have a secure system, just
the minimum RC files will be kept active. Some new ones will
be added if we need to add some tuning of the system at the
boot time.
All these packages will always keep a backup copy of the
original file before modifying it, but they will also keep a
copy of the modified file so that you can, at a later time in
the life of your workstation, check and see if these files were
modified since the installation of these packages.
For a detailed description of what SECclean does, see: SECclean internals
Last, they are all built as a Solaris package: they can be
be uninstalled if needed and you will find your servers in the
same state than before their installation.
Home, Next: SECclean installation
$Id: intro.html,v 1.8 2000/06/20 23:03:12 jean Exp
jean $; Jean
Chouanard, Xerox
PARC