How to I secure a Solaris 10 server?

Some steps towards securing Solaris 10: To list services: # inetadm Tell Solaris not to listen on port 25: # svccfg -s svc:/network/smtp:sendmail setprop config/local_only = true # svcadm refresh svc:/network/smtp:sendmail Disable vulnerable services: # inetadm -d ftp # inetadm -d telnet # inetadm -d finger Disable Berkeley r* services: # inetadm -d rlogin # …

Continue reading ‘How to I secure a Solaris 10 server?’ »