16. Sources of Tools
Here are some tools that you may find useful in securing your Solaris server.
In general, I don't like to use tools to perform this function. The reason is
that I like to know what changes were made, so that they can be monitored. Most
tools hide the details of their actions, so that you don't know what was changed,
and can't monitor the changed files, to determine if an intrusion has occurred.
- Fix-modes was created by Casper Dik to adjust the permissions of several
files and directories in Solaris, for the purpose of improving security. It
is available from ftp://ftp.wins.uva.nl/pub/solaris/fix-modes.tar.gz.
- JASS Toolkit
- The JASS toolkit was developed by SUN to simplify building secured Solaris
systems. It is available from http://www.sun.com/blueprints/tools.
There exists good documentation for the current release (0.3) of this toolkit.
The best of the documents is the Internals document (11).
This document provides fair detail as to what the toolkit actually does.
If you choose to use the JASS toolkit, please be aware that it will be
necessary to verify that the changes you made previously are still in place
after JASS runs.
- The Titan toolkit was created by Brad Powell to fix or tighten potential
security holes in UNIX (Solaris, Linux and FreeBSD). It is available from
Here is a short list of web sites that you may find useful.
If you have any comments
or suggestions, please E-mail firstname.lastname@example.org
- Ashford Computer Consulting Service