Posts tagged with: bsm

Many people don't run the SSH that comes with Solaris 9 and later on their Solaris hosts, instead opting for OpenSSH or one of Tectia's SSH products. Some don't like SunSSH's versioning, as it makes it hard to determine if SunSSH is vulnerable to the same issues as OpenSSH (most often it's not or the issue has already been addressed), others rely on features on OpenSSH that haven't made it into SunSSH (there aren't many) and then there are those who's corporate guidelines only allow for a third party solution - probably for uniformity across platforms. Whatever the reason, all of these people are security conscious so they may also have an auditing (aka BSM) requirement too, and this is where the problem comes to light: they soon discover that it appears that not all events are being recorded for users who connect via this third party SSH software. Thankfully it's easy to get OpenSSH working with Solaris auditing thanks to the very generous code contributions made by Sun to the OpenSSH community, way back in 2001, that were finally included in OpenSSH 4.0 and later. However, despite these contributions, people still miss the details on getting BSM working as they expect and this is what I'll address here. Continue reading ►

Links of interest for 17 Oct 2009 - 2 Nov 2009: ZFS Deduplication : Jeff Bonwick's Blog - Deduplication has just made its way into ZFS and Jeff provides a great explanation on what dedup it and why you need it, along with details on how to use it with ZFS. ZFS for MacOS X - One door closes, and thanks to Open Source, another opens. Apple cans ZFS project - It doesn't say much, but it speaks volumes. Monty, Stallman, MySQL, Oracle, and Sun: Open Letter Wars - Finally. Someone taking a subjective and clear headed view of the... Continue reading ►