A:
With the Solaris 8 OE Sun introduced a single host version of it's firewall suite called SunScreen 3.1 lite firewall, which was intended to provide packetfilter functionality. SunScreen 3.2, a full featured firewall, has now been integrated with the Solaris 9 OE. Customers no longer need to purchase a separate firewall product.
A:
Trusted Solaris, a Common Criteria certified Operating Environment, allows processing of information at multiple security levels. When separation of information and data is of prime concern, customers have the option to use the Trusted Solaris Operating Environment.
A:
Yes, SunScreen 3.2 in conjuction with the Solaris 9 operating environment
does provide this functionality. However, depending upon your requirements
you might be able to use the IPSEC/IKE and SecureShell features that
are included in the Solaris 9 release to establish a VPN. For more
information, please refer to the IPSec in the Solaris 9 Operating Environment
and the Secure Remote Access with the Solaris 9 Operating Environment
white papers.
A:
In you have the Solaris 9 CDs, you will find SunScreen 3.2 on
the Solaris 9 2 of 2 CD in the Solaris 9/ExtraValue/CoBundled directory.
If you have the Solaris 9 DVD, you will find SunScreen 3.2 in the
Solaris 9/ExtraValue/CoBundled directory.
A:
The SunScreen Admin probably did not work because you created a new policy
that did not have any admin access rules (either local or remote, as
desired). These rules are not automaticly created in a new policy.
Just after you install SunScreen, try using "Initial" to gain access to
the SunScreen Admin.
A:
Since both SecureShell and tcpwrapper are now part of the Solaris 9 release,
we did make some changes, for example, tighter integration into the Solaris
logging facility. Although we cannot guarantee that each update will be
included immediately, we are fully committed to keeping them as current
as possible.
A:
Included in the Solaris 9 release is a variety of new and improved security
features. For more information, please read the Solaris
Operating Environment Security FAQ.
Depending on the business requirements, both the Solaris operating
environment and Trusted Solaris can be made extremely secure. Both
operating environments have been evaluated against the highest security
standards. Trusted Solaris is being used in the most critical environments.
A:
The Solaris 9 operating environment reduces system vulnerabilities by
preventing malicious code from running and from accessing other information
on the stack. It provides the ability to prevent code from being written onto
the stack and executed, typically using the return address that is also on the
stack. It is much less likely to use a stack-based buffer overflow to run
code on the stack and gain root access.
A:
Yes, SunScreen 3.2 contains comparable functionality with other layered
firewall products. Depending upon your situation, for single host protection
SunScreen 3.2 is certainly a valid option.
