JavaScript is required to for searching.
Skip Navigation Links
Exit Print View
Oracle Solaris 11.1 Administration: Security Services     Oracle Solaris 11.1 Information Library
search filter icon
search icon

Document Information

Preface

Part I Security Overview

1.  Security Services (Overview)

Part II System, File, and Device Security

2.  Managing Machine Security (Overview)

3.  Controlling Access to Systems (Tasks)

4.  Virus Scanning Service (Tasks)

5.  Controlling Access to Devices (Tasks)

6.  Verifying File Integrity by Using BART (Tasks)

7.  Controlling Access to Files (Tasks)

Part III Roles, Rights Profiles, and Privileges

8.  Using Roles and Privileges (Overview)

9.  Using Role-Based Access Control (Tasks)

10.  Security Attributes in Oracle Solaris (Reference)

Part IV Cryptographic Services

11.  Cryptographic Framework (Overview)

12.  Cryptographic Framework (Tasks)

13.  Key Management Framework

Part V Authentication Services and Secure Communication

14.  Using Pluggable Authentication Modules

15.  Using Secure Shell

16.  Secure Shell (Reference)

17.  Using Simple Authentication and Security Layer

18.  Network Services Authentication (Tasks)

Part VI Kerberos Service

19.  Introduction to the Kerberos Service

20.  Planning for the Kerberos Service

21.  Configuring the Kerberos Service (Tasks)

22.  Kerberos Error Messages and Troubleshooting

23.  Administering Kerberos Principals and Policies (Tasks)

24.  Using Kerberos Applications (Tasks)

25.  The Kerberos Service (Reference)

Part VII Auditing in Oracle Solaris

26.  Auditing (Overview)

27.  Planning for Auditing

28.  Managing Auditing (Tasks)

29.  Auditing (Reference)

Glossary

Index

Numbers and Symbols

A

B

C

D

E

F

G

H

I

K

L

M

N

O

P

Q

R

S

T

U

V

W

X

Z

S

-S option, st_clean script, index iconDevice-Clean Scripts
-s option
audit command
index iconHow to Refresh the Audit Service
index iconHow to Refresh the Audit Service
index iconHow to Enable the Audit Service
safe protection level, index iconOverview of Kerberized Commands
SASL
environment variable, index iconSASL Environment Variable
options, index iconSASL Options
overview, index iconSASL (Overview)
plug-ins, index iconSASL Plug-ins
saslauthd_path option, SASL and, index iconSASL Options
scope (RBAC), description, index iconName Service Scope and RBAC
scp command
copying files with, index iconHow to Copy Files With Secure Shell
description, index iconSecure Shell Commands
Kerberos and, index iconKerberos Commands
scripts
audit_warn script
index iconHow to Configure the audit_warn Email Alias
index iconAudit Service Man Pages
checking for RBAC authorizations, index iconHow to Add RBAC Properties to Legacy Applications
device-clean scripts
See also device-clean scripts
for cleaning devices, index iconDevice-Clean Scripts
monitoring audit files example, index iconAuditing Efficiently
processing praudit output, index iconHow to View the Contents of Binary Audit Files
running with privileges, index iconAssigning Privileges to a Script
securing, index iconHow to Add RBAC Properties to Legacy Applications
use of privileges in, index iconHow to Run a Shell Script With Privileged Commands
SCSI devices, st_clean script, index icondevice_allocate File
SEAM Tool
and limited administration privileges, index iconUsing the SEAM Tool With Limited Kerberos Administration Privileges
and list privileges, index iconUsing the SEAM Tool With Limited Kerberos Administration Privileges
and X Window system, index iconCommand-Line Equivalents of the SEAM Tool
command-line equivalents, index iconCommand-Line Equivalents of the SEAM Tool
context-sensitive help, index iconPrint and Online Help Features of the SEAM Tool
creating a new policy
index iconHow to Create a New Kerberos Principal
index iconHow to Create a New Kerberos Policy
creating a new principal, index iconHow to Create a New Kerberos Principal
default values, index iconHow to Start the SEAM Tool
deleting a principal, index iconHow to Delete a Kerberos Principal
deleting policies, index iconHow to Delete a Kerberos Policy
displaying sublist of principals, index iconHow to View the List of Kerberos Principals
duplicating a principal, index iconHow to Duplicate a Kerberos Principal
files modified by, index iconThe Only File Modified by the SEAM Tool
Filter Pattern field, index iconHow to View the List of Kerberos Principals
gkadmin command, index iconWays to Administer Kerberos Principals and Policies
.gkadmin file, index iconThe Only File Modified by the SEAM Tool
help, index iconPrint and Online Help Features of the SEAM Tool
Help Contents, index iconPrint and Online Help Features of the SEAM Tool
how affected by privileges, index iconUsing the SEAM Tool With Limited Kerberos Administration Privileges
kadmin command, index iconWays to Administer Kerberos Principals and Policies
login window, index iconHow to Start the SEAM Tool
modifying a policy, index iconHow to Modify a Kerberos Policy
modifying a principal, index iconHow to Modify a Kerberos Principal
online help, index iconPrint and Online Help Features of the SEAM Tool
or kadmin command, index iconSEAM Tool
overview, index iconSEAM Tool
panel descriptions, index iconSEAM Tool Panel Descriptions
privileges, index iconUsing the SEAM Tool With Limited Kerberos Administration Privileges
setting up principal defaults, index iconHow to Set Up Defaults for Creating New Kerberos Principals
starting, index iconHow to Start the SEAM Tool
table of panels, index iconSEAM Tool Panel Descriptions
viewing a principal's attributes, index iconHow to View a Kerberos Principal's Attributes
viewing list of policies, index iconHow to View the List of Kerberos Policies
viewing list of principals, index iconHow to View the List of Kerberos Principals
viewing policy attributes, index iconHow to View a Kerberos Policy's Attributes
secret keys
creating, index iconHow to Generate a Symmetric Key by Using the pktool Command
generating
using the pktool command, index iconHow to Generate a Symmetric Key by Using the pktool Command
generating for Secure RPC, index iconImplementation of Diffie-Hellman Authentication
Secure by Default installation option, index iconUsing the Secure by Default Configuration
secure connection
across a firewall, index iconHow to Set Up Default Secure Shell Connections to Hosts Outside a Firewall
logging in, index iconHow to Log In to a Remote Host With Secure Shell
Secure NFS, index iconNFS Services and Secure RPC
Secure RPC
alternative, index iconAuthentication and Authorization for Remote Access
and Kerberos, index iconKerberos Authentication
description, index iconOverview of Secure RPC
implementation of, index iconImplementation of Diffie-Hellman Authentication
keyserver, index iconImplementation of Diffie-Hellman Authentication
overview, index iconAuthentication and Authorization for Remote Access
Secure Shell
administering, index iconA Typical Secure Shell Session
administering ZFS, index iconHow to Remotely Administer ZFS With Secure Shell
administrator task map, index iconConfiguring Secure Shell (Task Map)
authentication
requirements for, index iconSecure Shell Authentication
authentication methods, index iconSecure Shell Authentication
authentication steps, index iconAuthentication and Key Exchange in Secure Shell
basis from OpenSSH, index iconSecure Shell and the OpenSSH Project
changes in current release, index iconSecure Shell and the OpenSSH Project
changing passphrase, index iconHow to Change the Passphrase for a Secure Shell Private Key
command execution, index iconCommand Execution and Data Forwarding in Secure Shell
configuring chroot directory, index iconHow to Create an Isolated Directory for sftp Files
configuring clients, index iconClient Configuration in Secure Shell
configuring port forwarding, index iconHow to Configure Port Forwarding in Secure Shell
configuring server, index iconServer Configuration in Secure Shell
connecting across a firewall, index iconHow to Set Up Default Secure Shell Connections to Hosts Outside a Firewall
connecting outside firewall
from command line, index iconHow to Set Up Default Secure Shell Connections to Hosts Outside a Firewall
from configuration file, index iconHow to Set Up Default Secure Shell Connections to Hosts Outside a Firewall
copying files, index iconHow to Copy Files With Secure Shell
creating keys, index iconHow to Generate a Public/Private Key Pair for Use With Secure Shell
data forwarding, index iconCommand Execution and Data Forwarding in Secure Shell
description, index iconSecure Shell (Overview)
files, index iconSecure Shell Files
FIPS-140 support, index iconSecure Shell and FIPS-140
forwarding mail, index iconHow to Use Port Forwarding in Secure Shell
generating keys, index iconHow to Generate a Public/Private Key Pair for Use With Secure Shell
keywords, index iconKeywords in Secure Shell
local port forwarding
index iconHow to Use Port Forwarding in Secure Shell
index iconHow to Use Port Forwarding in Secure Shell
logging in fewer prompts, index iconHow to Reduce Password Prompts in Secure Shell
logging in to display remote GUI, index iconHow to Log In to a Remote Host With Secure Shell
logging in to remote host, index iconHow to Log In to a Remote Host With Secure Shell
login environment variables and, index iconSecure Shell and Login Environment Variables
naming identity files, index iconSecure Shell Files
protocol versions, index iconSecure Shell (Overview)
public key authentication, index iconSecure Shell Authentication
remote port forwarding, index iconHow to Use Port Forwarding in Secure Shell
scp command, index iconHow to Copy Files With Secure Shell
specifying exceptions to system defaults, index iconHow to Create User and Host Exceptions to Secure Shell Defaults
TCP and, index iconHow to Configure Port Forwarding in Secure Shell
typical session, index iconA Typical Secure Shell Session
user procedures, index iconUsing Secure Shell (Task Map)
using port forwarding, index iconHow to Use Port Forwarding in Secure Shell
using without password, index iconHow to Reduce Password Prompts in Secure Shell
xauth package, index iconHow to Log In to a Remote Host With Secure Shell
securing
logins task map, index iconSecuring Logins and Passwords (Task Map)
network at installation, index iconUsing the Secure by Default Configuration
passwords task map, index iconSecuring Logins and Passwords (Task Map)
scripts, index iconHow to Add RBAC Properties to Legacy Applications
security
across insecure network, index iconHow to Set Up Default Secure Shell Connections to Hosts Outside a Firewall
auditing, index iconAuditing (Overview)
auditing and, index iconHow Is Auditing Related to Security?
BART
index iconVerifying File Integrity by Using BART (Tasks)
index iconBART Security Considerations
computing digest of files, index iconHow to Compute a Digest of a File
computing MAC of files, index iconHow to Compute a MAC of a File
Cryptographic Framework, index iconCryptographic Framework (Overview)
device allocation, index iconControlling Access to Devices (Tasks)
devices, index iconControlling Access to Devices
DH authentication, index iconImplementation of Diffie-Hellman Authentication
encrypting files, index iconHow to Encrypt and Decrypt a File
installation options, index iconUsing the Secure by Default Configuration
key management framework, index iconKey Management Framework
netservices limited installation option, index iconUsing the Secure by Default Configuration
NFS client-server, index iconImplementation of Diffie-Hellman Authentication
password encryption, index iconPassword Encryption
policy overview, index iconSecurity Policy
preventing remote login, index iconHow to Restrict and Monitor root Logins
protecting against denial of service, index iconUsing Resource Management Features
protecting against Trojan horse, index iconSetting the PATH Variable
protecting devices, index iconDevice-Clean Scripts
protecting hardware, index iconControlling Access to System Hardware (Tasks)
protecting PROM, index iconControlling Access to System Hardware (Tasks)
Secure by Default, index iconUsing the Secure by Default Configuration
Secure Shell, index iconUsing Secure Shell
system hardware, index iconControlling Access to System Hardware (Tasks)
systems, index iconManaging Machine Security (Overview)
security attributes
checking for, index iconApplications That Check UIDs and GIDs
considerations when directly assigning, index iconSecurity Considerations When Directly Assigning Security Attributes
description, index iconRBAC Elements and Basic Concepts
listing all RBAC, index iconHow to View All Defined Security Attributes
Network Security rights profile, index iconRBAC Elements and Basic Concepts
order of search, index iconOrder of Search for Assigned Security Attributes
privileges on commands, index iconApplications That Check for Privileges
special ID on commands, index iconApplications That Check UIDs and GIDs
usability considerations when directly assigning, index iconUsability Considerations When Directly Assigning Security Attributes
using to mount allocated device, index iconHow to Authorize Users to Allocate a Device
security mechanism, specifying with -m option, index iconOverview of Kerberized Commands
security modes, setting up environment with multiple, index iconHow to Set Up a Secure NFS Environment With Multiple Kerberos Security Modes
security policy, default (RBAC), index iconRBAC Databases
security service, Kerberos and, index iconKerberos Security Services
selecting
audit classes, index iconHow to Preselect Audit Classes
audit records, index iconHow to Select Audit Events From the Audit Trail
events from audit trail, index iconHow to Select Audit Events From the Audit Trail
semicolon (;), device_allocate file, index icondevice_allocate File
sendmail command, authorizations required, index iconSelected Commands That Require Authorizations
seq audit policy
and sequence token
index iconUnderstanding Audit Policy
index iconsequence Token
description, index iconUnderstanding Audit Policy
sequence audit token
and seq audit policy, index iconsequence Token
format, index iconsequence Token
ServerAliveCountMax keyword, ssh_config file, index iconKeywords in Secure Shell
ServerAliveInterval keyword, ssh_config file, index iconKeywords in Secure Shell
ServerKeyBits keyword, sshd_config file, index iconKeywords in Secure Shell
servers
AUTH_DH client-server session, index iconImplementation of Diffie-Hellman Authentication
configuring for Secure Shell, index iconServer Configuration in Secure Shell
definition in Kerberos, index iconAuthentication-Specific Terminology
gaining access with Kerberos, index iconGaining Access to a Service Using Kerberos
obtaining credential for, index iconObtaining a Credential for a Server
realms and, index iconKerberos Servers
service
definition in Kerberos, index iconAuthentication-Specific Terminology
disabling on a host, index iconHow to Temporarily Disable Authentication for a Service on a Host
obtaining access for specific service, index iconObtaining Access to a Specific Service
service keys
definition in Kerberos, index iconAuthentication-Specific Terminology
keytab files and, index iconAdministering Keytab Files
service management facility, refreshing Cryptographic Framework, index iconHow to Add a Software Provider
Service Management Facility (SMF), See SMF
service principal
adding to keytab file
index iconAdministering Keytab Files
index iconHow to Add a Kerberos Service Principal to a Keytab File
description, index iconKerberos Principals
planning for names, index iconClient and Service Principal Names
removing from keytab file, index iconHow to Remove a Service Principal From a Keytab File
session ID, audit, index iconProcess Audit Characteristics
session keys
definition in Kerberos, index iconAuthentication-Specific Terminology
Kerberos authentication and, index iconHow the Kerberos Authentication System Works
-setflags option, auditconfig command, index iconHow to Preselect Audit Classes
setgid permissions
absolute mode
index iconFile Permission Modes
index iconHow to Change Special File Permissions in Absolute Mode
description, index iconsetgid Permission
security risks, index iconsetgid Permission
symbolic mode, index iconFile Permission Modes
-setnaflags option, auditconfig command, index iconHow to Preselect Audit Classes
setpin subcommand, pktool command, index iconHow to Generate a Passphrase by Using the pktool setpin Command
-setplugin option
auditconfig command
index iconHow to Send Audit Files to a Remote Repository
index iconHow to Configure a Remote Repository for Audit Files
index iconHow to Configure syslog Audit Logs
-setpolicy option, auditconfig command, index iconHow to Change Audit Policy
setting
arge policy, index iconHow to Audit All Commands by Users
argv policy, index iconHow to Audit All Commands by Users
audit policy, index iconHow to Change Audit Policy
audit queue controls, index iconHow to Change Audit Queue Controls
principal defaults (Kerberos), index iconHow to Set Up Defaults for Creating New Kerberos Principals
setuid permissions
absolute mode
index iconFile Permission Modes
index iconHow to Change Special File Permissions in Absolute Mode
description, index iconsetuid Permission
finding files with permissions set, index iconHow to Find Files With Special File Permissions
security risks
index iconRestricting setuid Executable Files
index iconsetuid Permission
symbolic mode, index iconFile Permission Modes
sftp command
auditing file transfers, index iconHow to Audit FTP and SFTP File Transfers
chroot directory and, index iconHow to Create an Isolated Directory for sftp Files
copying files with, index iconHow to Copy Files With Secure Shell
Kerberos and, index iconKerberos Commands
sftpcommand, description, index iconSecure Shell Commands
sh command, privileged version, index iconProfile Shells and RBAC
SHA1 kernel provider, index iconHow to List Available Providers
SHA2 kernel provider, index iconHow to List Available Providers
sharing files
and network security, index iconSharing Files Across Machines
with DH authentication, index iconHow to Share NFS Files With Diffie-Hellman Authentication
shell, privileged versions, index iconProfile Shells and RBAC
shell commands, passing parent shell process number, index iconHow to Determine the Privileges on a Process
shell process, listing its privileges, index iconHow to Determine the Privileges on a Process
shell scripts, writing privileged, index iconHow to Run a Shell Script With Privileged Commands
shosts.equiv file, description, index iconSecure Shell Files
.shosts file, description, index iconSecure Shell Files
signing
PKCS #10 CSR, index iconHow to Sign a Certificate Request by Using the pktool signcsr Command
using the pktool command, index iconHow to Sign a Certificate Request by Using the pktool signcsr Command
signing providers, Cryptographic Framework, index iconPlugins to the Cryptographic Framework
single-sign-on system, index iconKerberos User Commands
Kerberos and, index iconWhat Is the Kerberos Service?
size of audit files
reducing, index iconHow to Merge Audit Files From the Audit Trail
reducing storage-space requirements, index iconAuditing Efficiently
slave_datatrans file
description, index iconKerberos Files
KDC propagation and, index iconBacking Up and Propagating the Kerberos Database
slave_datatrans_slave file, description, index iconKerberos Files
slave KDCs
automatically configuring, index iconHow to Automatically Configure a Slave KDC
configuring, index iconHow to Manually Configure a Slave KDC
definition, index iconKerberos-Specific Terminology
interactively configuring, index iconHow to Interactively Configure a Slave KDC
master KDC and, index iconKerberos Servers
or master, index iconConfiguring KDC Servers
planning for, index iconThe Number of Slave KDCs
swapping with master KDC, index iconSwapping a Master KDC and a Slave KDC
slot, definition in Cryptographic Framework, index iconTerminology in the Cryptographic Framework
SMF
auditd service, index iconAudit Service
Cryptographic Framework service, index iconAdministrative Commands in the Cryptographic Framework
device allocation service, index iconDevice Allocation Service
enabling keyserver, index iconHow to Restart the Secure RPC Keyserver
kcfd service, index iconAdministrative Commands in the Cryptographic Framework
managing Secure by Default configuration, index iconUsing the Secure by Default Configuration
restarting Cryptographic Framework, index iconHow to Refresh or Restart All Cryptographic Services
restarting Secure Shell, index iconHow to Configure Port Forwarding in Secure Shell
ssh service, index iconHow to Configure Port Forwarding in Secure Shell
socket audit token, index iconsocket Token
solaris.admin.edit authorization, adding to rights profile, index iconHow to Clone and Modify a System Rights Profile
solaris.device.revoke authorization, index iconDevice Allocation Commands
solaris.smf.value authorization, removing from rights profile, index iconHow to Clone and Modify a System Rights Profile
sp audit event modifier, index iconheader Token
SPARC T4 series, cryptographic optimizations, index iconCryptographic Framework and the SPARC T-Series Servers in This Release
special permissions
setgid permissions, index iconsetgid Permission
setuid permissions, index iconsetuid Permission
sticky bit, index iconSticky Bit
square brackets ([]), auditrecord output, index iconAudit Record Analysis
sr_clean script, description, index iconDevice-Clean Scripts
ssh-add command
description, index iconSecure Shell Commands
example
index iconHow to Reduce Password Prompts in Secure Shell
index iconHow to Reduce Password Prompts in Secure Shell
storing private keys, index iconHow to Reduce Password Prompts in Secure Shell
ssh-agent command
description, index iconSecure Shell Commands
from command line, index iconHow to Reduce Password Prompts in Secure Shell
ssh command
description, index iconSecure Shell Commands
Kerberos and, index iconKerberos Commands
overriding keyword settings, index iconSecure Shell Commands
port forwarding options, index iconHow to Use Port Forwarding in Secure Shell
remotely administering ZFS, index iconHow to Remotely Administer ZFS With Secure Shell
using, index iconHow to Log In to a Remote Host With Secure Shell
using a proxy command, index iconHow to Set Up Default Secure Shell Connections to Hosts Outside a Firewall
.ssh/config file
description, index iconSecure Shell Files
override, index iconSecure Shell Files
ssh_config file
configuring Secure Shell, index iconClient Configuration in Secure Shell
host-specific parameters, index iconHost-Specific Parameters in Secure Shell
keywords, index iconKeywords in Secure Shell
See specific keyword
override, index iconSecure Shell Files
.ssh/environment file, description, index iconSecure Shell Files
ssh_host_dsa_key file, description, index iconSecure Shell Files
ssh_host_dsa_key.pub file, description, index iconSecure Shell Files
ssh_host_key file, override, index iconSecure Shell Files
ssh_host_key.pub file, description, index iconSecure Shell Files
ssh_host_rsa_key file, description, index iconSecure Shell Files
ssh_host_rsa_key.pub file, description, index iconSecure Shell Files
.ssh/id_dsa file, index iconSecure Shell Files
.ssh/id_rsa file, index iconSecure Shell Files
.ssh/identity file, index iconSecure Shell Files
ssh-keygen command
description, index iconSecure Shell Commands
passphrase protection, index iconSecure Shell and the OpenSSH Project
using, index iconHow to Generate a Public/Private Key Pair for Use With Secure Shell
ssh-keyscan command, description, index iconSecure Shell Commands
ssh-keysign command, description, index iconSecure Shell Commands
.ssh/known_hosts file
description, index iconSecure Shell Files
override, index iconSecure Shell Files
ssh_known_hosts file, index iconSecure Shell Files
.ssh/rc file, description, index iconSecure Shell Files
sshd command, description, index iconSecure Shell Commands
sshd_config file
description, index iconSecure Shell Files
keywords, index iconKeywords in Secure Shell
See specific keyword
overrides of /etc/default/login entries, index iconSecure Shell and Login Environment Variables
sshd daemon, Kerberos and, index iconKerberos Daemons
sshd.pid file, description, index iconSecure Shell Files
sshrc file, description, index iconSecure Shell Files
st_clean script
index icondevice_allocate File
index iconDevice-Clean Scripts
standard cleanup, st_clean script, index iconDevice-Clean Scripts
starting
auditing, index iconHow to Enable the Audit Service
device allocation, index iconHow to Enable Device Allocation
KDC daemon
index iconHow to Manually Configure a Slave KDC
index iconHow to Configure a Slave KDC to Use Full Propagation
Secure RPC keyserver, index iconHow to Restart the Secure RPC Keyserver
stash file
creating
index iconHow to Manually Configure a Slave KDC
index iconHow to Configure a Slave KDC to Use Full Propagation
definition, index iconKerberos-Specific Terminology
sticky bit permissions
absolute mode
index iconFile Permission Modes
index iconHow to Change Special File Permissions in Absolute Mode
description, index iconSticky Bit
symbolic mode, index iconFile Permission Modes
Stop (RBAC), rights profile, index iconRights Profiles
storage costs, and auditing, index iconCost of Storage of Audit Data
storage overflow prevention, audit trail, index iconHow to Prevent Audit Trail Overflow
storing
audit files
index iconHow to Plan Disk Space for Audit Records
index iconHow to Create ZFS File Systems for Audit Files
audit files remotely, index iconHow to Prepare to Stream Audit Records to Remote Storage
passphrase, index iconHow to Encrypt and Decrypt a File
StrictHostKeyChecking keyword, ssh_config file, index iconKeywords in Secure Shell
StrictModes keyword, sshd_config file, index iconKeywords in Secure Shell
su command
displaying access attempts on console, index iconHow to Restrict and Monitor root Logins
in role assumption, index iconHow to Assume a Role
monitoring use, index iconHow to Monitor Who Is Using the su Command
su file, monitoring su command, index iconHow to Monitor Who Is Using the su Command
subject audit token, format, index iconsubject Token
Subsystem keyword, sshd_config file, index iconKeywords in Secure Shell
success, audit class prefix, index iconAudit Class Syntax
sufficient control flag, PAM, index iconHow PAM Stacking Works
sulog file, index iconHow to Monitor Who Is Using the su Command
monitoring contents of, index iconHow to Monitor Who Is Using the su Command
Sun Crypto Accelerator 1000 board, listing mechanisms, index iconHow to Disable Hardware Provider Mechanisms and Features
Sun Crypto Accelerator 6000 board
hardware plugin to Cryptographic Framework, index iconIntroduction to the Cryptographic Framework
listing mechanisms, index iconHow to List Hardware Providers
Secure Shell and FIPS-140, index iconSecure Shell and FIPS-140
SUPATH in Secure Shell, index iconSecure Shell and Login Environment Variables
superuser
See also root role
compared to privilege model, index iconPrivileges (Overview)
compared to RBAC model, index iconRBAC: An Alternative to the Superuser Model
differences from privilege model, index iconAdministrative Differences on a System With Privileges
eliminating in RBAC, index iconRBAC Roles
troubleshooting becoming root as a role, index iconHow to Change the root Role Into a User
svc:/system/device/allocate, device allocation service, index iconDevice Allocation Service
svcadm command
administering Cryptographic Framework
index iconScope of the Cryptographic Framework
index iconAdministrative Commands in the Cryptographic Framework
enabling Cryptographic Framework, index iconHow to Refresh or Restart All Cryptographic Services
enabling keyserver daemon, index iconHow to Restart the Secure RPC Keyserver
refreshing Cryptographic Framework, index iconHow to Add a Software Provider
restarting
Secure Shell, index iconHow to Configure Port Forwarding in Secure Shell
syslog daemon, index iconHow to Configure syslog Audit Logs
svcs command
listing cryptographic services, index iconHow to Refresh or Restart All Cryptographic Services
listing keyserver service, index iconHow to Restart the Secure RPC Keyserver
swapping master and slave KDCs, index iconSwapping a Master KDC and a Slave KDC
symbolic links, file permissions, index iconUNIX File Permissions
symbolic mode
changing file permissions
index iconFile Permission Modes
index iconHow to Change File Permissions in Symbolic Mode
index iconHow to Change File Permissions in Symbolic Mode
description, index iconFile Permission Modes
synchronizing clocks
master KDC
index iconHow to Manually Configure a Master KDC
index iconHow to Configure a KDC to Use an LDAP Data Server
overview, index iconSynchronizing Clocks Between KDCs and Kerberos Clients
slave KDC
index iconHow to Manually Configure a Slave KDC
index iconHow to Configure a Slave KDC to Use Full Propagation
SYS privileges, index iconPrivilege Descriptions
syslog.conf entry
creating for PAM, index iconHow to Log PAM Error Reports
creating for real-time audit logs, index iconHow to Configure syslog Audit Logs
syslog.conf file
and auditing, index iconAudit Service Man Pages
audit.notice level, index iconHow to Configure syslog Audit Logs
executable stack messages, index iconProtecting Executable Files From Compromising Security
kern.notice level, index iconProtecting Executable Files From Compromising Security
priv.debug entry, index iconFiles With Privilege Information
privilege debugging, index iconFiles With Privilege Information
SYSLOG_FAILED_LOGINS, in Secure Shell, index iconSecure Shell and Login Environment Variables
SyslogFacility keyword, sshd_config file, index iconKeywords in Secure Shell
System Administrator (RBAC)
protecting hardware, index iconHow to Require a Password for SPARC Hardware Access
recommended role, index iconRBAC: An Alternative to the Superuser Model
rights profile, index iconRights Profiles
system calls
argument audit token, index iconargument Token
exec_args audit token, index iconexec_args Token
exec_env audit token, index iconexec_env Token
ioctl to clean audio device, index iconDevice-Clean Scripts
return audit token, index iconreturn Token
system hardware, controlling access to, index iconControlling Access to System Hardware (Tasks)
system properties, privileges relating to, index iconPrivilege Descriptions
system security
access, index iconManaging Machine Security (Overview)
changing
root password, index iconHow to Change the root Password
displaying
user's login status
index iconHow to Display a User's Login Status
index iconHow to Display a User's Login Status
users with no passwords, index iconHow to Display Users Without Passwords
firewall systems, index iconFirewall Systems
hardware protection
index iconMaintaining Physical Security
index iconControlling Access to System Hardware (Tasks)
login access restrictions
index iconMaintaining Login Control
index iconMaintaining Login Control
machine access, index iconMaintaining Physical Security
overview
index iconManaging Machine Security (Overview)
index iconControlling Access to a Computer System
password encryption, index iconPassword Encryption
passwords, index iconManaging Password Information
privileges, index iconPrivileges (Overview)
protecting from risky programs, index iconProtecting Against Programs With Security Risk (Task Map)
restricted shell
index iconAssigning a Restricted Shell to Users
index iconAssigning a Restricted Shell to Users
restricting remote root access, index iconHow to Restrict and Monitor root Logins
role-based access control (RBAC)
index iconConfiguring Role-Based Access Control to Replace Superuser
index iconRBAC: An Alternative to the Superuser Model
root access restrictions
index iconRestricting root Access to Shared Files
index iconHow to Restrict and Monitor root Logins
special accounts, index iconSpecial System Accounts
su command monitoring
index iconLimiting and Monitoring Superuser Access
index iconHow to Monitor Who Is Using the su Command
task map, index iconProtecting Against Programs With Security Risk (Task Map)
UFS ACLs, index iconUsing Access Control Lists to Protect UFS Files
System V IPC
ipc audit token, index iconipc Token
IPC_perm audit token, index iconIPC_perm Token
privileges, index iconPrivilege Descriptions
system variables
See also variables
CRYPT_DEFAULT, index iconHow to Specify an Algorithm for Password Encryption
KEYBOARD_ABORT, index iconHow to Disable a System's Abort Sequence
noexec_user_stack, index iconHow to Disable Programs From Using Executable Stacks
noexec_user_stack_log, index iconHow to Disable Programs From Using Executable Stacks
rstchown, index iconHow to Change the Owner of a File
/system/volatile/sshd.pid file, description, index iconSecure Shell Files
systems
protecting from risky programs, index iconProtecting Against Programs With Security Risk (Task Map)
tracking file integrity, index iconVerifying File Integrity by Using BART (Tasks)