Re: Problem while doing secure installation of solaris 8
From: Richard Olson (olson@wanadoo.nl)Date: 09/28/02
- Next message: Vladimir P.: "Re: Problem while doing secure installation of solaris 8"
- Previous message: Thomas B: "avoid DoS"
- In reply to: Aniruddha: "Problem while doing secure installation of solaris 8"
- Next in thread: Vladimir P.: "Re: Problem while doing secure installation of solaris 8"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Richard Olson" <olson@wanadoo.nl> Date: Sat, 28 Sep 2002 14:13:29 GMT
"Aniruddha" <apal74@hotmail.com> wrote in message
news:an30js$5lc$2@news-int.gatech.edu...
> Hi,
>
> I am trying to make the solaris 8 installation in my sun blade 2000
> machine secure following the checklist in the site:
>
> http://www.sans.org/y2k/practical/Jeff_Campione_GCUX.htm
>
> The steps I followed so far are:
>
> 1. Stopping unnecessary boot processes
> 2. Tightening network
> 3. Disabling unnecessary administrative accounts (like adm, lp etc.)
> 4. Improving Logging and system and process accounting.
>
> Before going to install SSH, I rebooted my computer, and tried looging
> in as root, however, I got the following message:
>
> **************************************************
> The DT messaging system could not be started:
>
> check for proper host name in
> /etc/src.sh
> /etc/hosts
> /usr/adm/inetd.sec
>
> **************************************************
>
> I logged in failsafe mode and found that src.sh and inetd.sec are blank,
> while /etc/hosts shows the given host name.
>
> Is it possible that I have somehow disabled console login for root and
> users? But even with great enthusiasm, I was not able to find out the
> step where I could have done that. In this respect, a little help in
> resolving this problem will boost my confidence?
>
> Thanks in advance,
>
> Pal.
>
Root login is disabled in /etc/default/login. Doesn't sound as though
you've done that, otherwise you would have been "bounced" during login.
Sounds more like you've disabled, or failed to install the ToolTalk
messaging service. Do a pkginfo and see if you've installed SUNWtltk.
Might also want to see if you've disabled rpc/ttdbserverd in
/etc/inetd.conf. Cant guarantee this will solve your problem, but its worth
a look.
- Next message: Vladimir P.: "Re: Problem while doing secure installation of solaris 8"
- Previous message: Thomas B: "avoid DoS"
- In reply to: Aniruddha: "Problem while doing secure installation of solaris 8"
- Next in thread: Vladimir P.: "Re: Problem while doing secure installation of solaris 8"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
