Security Configuration of the Solaris Server

Security Configuration of the Solaris server-Linux Enterprise Application-Linux server application information. For more information, see. Security is a complicated problem and cannot be explained clearly in one or two sentences. Here are some of my ideas:

1. First, determine what to do with solaris? What security level is required? In practical applications, solaris runs mostly on sun's dedicated servers and runs large databases such as oracle, so it is generally placed in a private network, the application server to access the solaris server through a private network, but it does not provide access to internet users. in this way, it builds the first security line.

2. Install the system in a customized manner. Install as few software packages as possible. After installation, install various system patches, then, modify some kernel parameters (/etc/system) as required ).

3. Enable the solaris firewall tool ipf. Write the configuration file/etc/ipf. conf according to the actual situation.

4. Other measures.

What if I disable the p2p protocol in linux? What if I go to deny for some plug-ins and bt?

You can use the protocol analysis tool-ethereal. ethereal is a famous network port detector. It is a network listening software that can run on linux, solaris, sgi, and other platforms, ethereal is basically a tool used by attackers. For network administrators, packet capture analysis can also be used to determine abnormal traffic and communication between abnormal users in the LAN and the outside world, for example, for p2p application software traffic such as bit torrent, which currently occupies network bandwidth, the network administrator can determine the traffic by using the software and use the traffic control (tc) to standardize and rationally allocate bandwidth resources and improve network utilization.