YASSP

Operating System Installation


Do this install with no network connectivity, or with connectivity with *only* a trusted network. During this first step, your server will be vulnerable and easy to compromise.

Boot the machine from the CD-rom, and provide the information as needed. Here is an example for an external server:

More info on system installation can be found on Hardening Solaris: Securely installing a firewall bastion host By Seán Boran and Armoring Solaris by Lance Spitzner. Both have more details on the software choice and some example of disk partition to use. SUN's SolarisTM Operating Environment Minimization for Security: A Simple, Reproducible and Secure Application Installation Methodology is a good reading too.
Bravo: at this step, you have a newly installed Solaris box, with the recommended patches and nothing more.
Do not connect it on the public network, as no cleanup was done yet: it's still vulnerable!


Home, Next: YASSP installation

$Id: os.html,v 1.22 2000/11/19 03:59:45 jean Exp jean $; Jean Chouanard, Xerox PARC