Securing Applications With Identity Services, Part 1: Authentication 0
Written by an Open-SSO engineer.
Learning Solaris 10 Check out the Zones F.A.Q. !
- Top pages
- Recent Stories
- Sun Fire X4500 as a Media Server for Symantec Veritas NetBackup 6.5
- The whole Sun virtualization story
- Solution 206350 : Should auto-negotiation be changed to force the speed and mode on Ethernet interface adapters?
- Overview of ILOM
- Securing Applications With Identity Services, Part 2: Authorization
- Sun Fire X4500 as a Media Server for Symantec Veritas NetBackup 6.5
- Categories
- Blueprints (RSS) (13)
- Docs (RSS) (83)
- Infodocs (RSS) (70)
- Java (RSS) (2)
- JES (RSS) (7)
- Access Mgr (RSS) (16)
- App. Server (RSS) (7)
- Directory Server (RSS) (7)
- Identity Mgr (RSS) (9)
- Web Server (RSS) (10)
- Network (RSS) (14)
- OpenSolaris (RSS) (17)
- Performance (RSS) (12)
- s10 stories (RSS) (101)
- Security (RSS) (14)
- Crypto Framework (RSS) (4)
- IP Filter (RSS) (1)
- PRM - privileges (RSS) (5)
- Security (RSS) (10)
- Storage (RSS) (9)
- Sun Cluster (RSS) (13)
- Recent Documentss
- Sun Fire X4500 as a Media Server for Symantec Veritas NetBackup 6.5
- Supporting Apache Loadbalancer with GlassFish Cluster
- Deploying PHP From Cool Stack in Sun Java System Web Server
- How to Upgrade the Solaris 10 OS With Non-global Zones Using Solaris Live Upgrade
- Sun Java System Directory Server 6.0 as an LDAP Naming Service
- Sun Fire X4500 as a Media Server for Symantec Veritas NetBackup 6.5
- Archives
- April 2008 (3)
- March 2008 (1)
- February 2008 (1)
- December 2007 (1)
- November 2007 (7)
- October 2007 (13)
- September 2007 (1)
- August 2007 (2)
- May 2007 (1)
- April 2007 (3)
- February 2007 (1)
- January 2007 (9)
- December 2006 (2)
- November 2006 (6)
- October 2006 (8)
- August 2006 (5)
- July 2006 (5)
- June 2006 (9)
- May 2006 (2)
- April 2006 (6)
- March 2006 (11)
- February 2006 (19)
- January 2006 (11)
- December 2005 (21)
- November 2005 (10)
- October 2005 (1)
- September 2005 (17)
- August 2005 (17)
- July 2005 (2)
- June 2005 (11)
- May 2005 (7)
- April 2005 (23)
- March 2005 (45)
-
New Solaris 10 security docs 0
Glenn Brunette, a Sun Solaris security advocate, has published new security docs :
- A list of all the set-uid/setgid programs that ship with Solaris 10 08/07 with description : Go to the document
- A good description of all security features of Solaris 10 08/08 with examples : Go to the document
Must-have link : (Open)Solaris Security Presentations 0
Much to read on Intrusion Detection Systems 0
The Hacker’s choice, a well known, white hats hacker site just compiled a large set of documents about host-based attacks and network-based attacks.
Using the Cryptographic Accelerator of the UltraSPARC T1 Processor blueprint 0
This Sun BluePrints article demonstrates how the combination of the Solaris 10 Operating System and the UltraSPARC T1 processor can be used to create a high performance, secure Web site. It provides a brief overview of SSL technology, as well as an introduction to the Solaris Cryptographic Framework. Configuration details are included for common security applications, such as Apache, the Sun Java System Web Server, and secure Java technology applications, enabling these programs to utilize NCP and KSSL technology. A performance study of secure Web applications is also included.
Solaris Crypt : better password hashing algorithms 0
From Solaris 9 update 2, a new framework was introduced that would make it possible to select among a number of hash algorithms the famous one that would be used to compute the encrypted version of the passwords. Before that time, the traditional crypt() routine was used, limiting the size of passwords to 8 characters and providing the even more famous 13 characters found in the /etc/shadow file.
The Solaris Pluggable Crypt Framework makes it possible to choose from 3 new algorithms, all allowing a maximal password size of 255 characters:
# cat /etc/security/crypt.conf
(…)
1 crypt_bsdmd5.so.1
2a crypt_bsdbf.so.1
md5 crypt_sunmd5.so.1
What are these libraries?
From the man pages: (more…)
Introduction to Intrusion Detection System with Snort 0
Bigadmin published a complete overview of what SNORT is and the way to start configuring it. Not enough for production but perfect to decide whether to investigate further or not…
S10 Encryption supplement 0
This download gives you access to more secure (read larger keys) AES & Blowfish.
Go to the download
Lab : the user_attr database 0
Playing with user_attr database
========================
Last Edited : 16/02/2005
This paper is meant to illustrate the new possibilities of the /etc/user_attr database. Up to Solaris 9, the database could be used to assign RBAC profiles, roles and authorizations to users as well as a default project.
3 new parameters are introduced as of Solaris 10.
Learning Solaris 10 is powered by WordPress 1.5.2 and delivered to you in 0.564 seconds.
Design by Matthew & modified by JC.