Enhancements to Machine Security in the Solaris 10 Release
Since the Solaris 9 release, the following features have been introduced to enhance
system security:
Strong password encryption is available and configurable. For more information, see Password Encryption.
Device policy is enforced with privileges. For more information, see Device Policy (Overview).
For device allocation, the /etc/security/dev directory might not be supported in future releases of the Solaris OS.
The Basic Audit Reporting Tool (BART) can monitor the authenticity of the files on your system. For more information, see Chapter 6, Using the Basic Audit Reporting Tool (Tasks).
Files can be protected with strong encryption. For more information, see Protecting Files With Encryption.
Privileges enforce process rights at the kernel level. For more information, see Privileges (Overview).
The Solaris Cryptographic Framework centralizes cryptographic services for providers and for consumers. For more information, see Chapter 13, Solaris Cryptographic Framework (Overview).
The PAM framework provides functionality for many programs, such as Solaris Secure Shell. For more information, see Changes to PAM for the Solaris 10 Release.
Solaris zones and resource management control access to machine resources. For more information, see System Administration Guide: Virtualization Using the Solaris Operating System.
