Here you will find tools created to be used in conjunction with various articles within our database.

• Solaris™ Security Toolkit ("jass")
  

  The Solaris™ Security Toolkit, also informally known as "jass", is a tool designed to assist in the development, deployment, and maintenance of secured Solaris™ Operating Environment systems. The Toolkit is comprised of a set of scripts and directories implementing the recommendations of the security-related Sun BluePrints OnLine articles. Extensive documentation on its use is available in its Documentation directory or from Browse by Subject - Security.(Scripts updated on 09/02)

  
  
  
• SUNBEsdm package

  The SUNBEsdm package contains a ksh script that simplifies the methods for putting a system disk under Solstice DiskSuite™ software control. It includes mirroring, hot sparing, setting up a contingency disk, and OBP aliases. The SUNBEsdm package was tested on the Solaris™ 8 Operating Environment with Solstice DiskSuite software version 4.2.1.

  
  
  
• find_main_ssp.ksk

  This script is needed for the Sun Enterprise™ 10000 SSPs hardened per the Sun BluePrints article 'Securing the Sun Enterprise 10000' to detect the main SSP in a redundant SSP environment. It is only required when hardening SSP versions 3.4 and 3.5.

  
  
  
• Data Center Design and Methodology References

  Many of the books, software, papers, or other materials referred to thought the book can be ordered by mail or downloaded from the originating organization. This page gives contact information and URLs for most these organizations and reference materials.

  
  
  
• Server Virtualization with Trusted Solaris 8 Operating Environment

  This tar file contains configuration files and shell scripts to simplify and automate some of the procedures described in "Server Virtualization with Trusted Solaris 8 Operating Environment". The files are described in Table 4 of the Summary. The specific values are provided as examples and would need modification for actual deployments.

  
  
  
• Developing a Security Policy - Supplemental

  This is a supplemental file (PDF) that describes an outline business process for development of a security policy for the article Developing a Security Policy.

  
  
  
• MD5 Scripts

  These pre-compiled MD5 executables, for both x86 and SPARC™ platform, create crytographically secure digital fingerprints. When the MD5 digital fingerprint, or hash, is compared against the Solaris FingerPrint Database the hash will determine if a file has been modified. These MD5 binaries are referred to in a variety of online articles including: Using the Solaris FingerPrint Database, Securing the Sun Fire Midframe System Controller, and Securing the Sun Fire™ 15K System Controller.

  
  
  
• HPC_code_examples.tar.Z tar-file

  Supplemental Files for the"Techniques for Optimizing Applications: High Performance Computing" Sun BluePrints book. The HPC_code_examples.tar.Z tar-file contains the source code, makefiles, and shell scripts required to compile, link, and run the example programs discussed in the book.

  
  
  
• OpenSSH Tools

  These tools simplify the packaging and deployment of the OpenSSH tool on the Solaris™ Operating Evironment. Use of these tools is described in the Building and Deploying OpenSSH on the Solaris™ Operating Environment article.

  
  
  
• Capacity Planning Spreadsheet

  This spreadsheet is designed to quickly generate estimates of capacity and load. The spreadsheet consists of charts and graphs that combine projected effects of various influences on load, to generate a model that projects the total future load on the system. This spreadsheet is described in detail in the Sun BluePrints book, Capacity Planning for Internet Services.

  
  
  
• FixModes Script

  FixModes is a script that tries to make Solaris™ Operating Environment file modes more secure. It does this by removing group and world write permissions of all files, devices, and directories listed in /var/sadm/install/contents, with the exception of those listed in exceptions.h (Script updated on 09/02).

  
  
  
• sfpc-1.2.tar.Z and sidekick.sh.Z

  For the use of The Solaris™ Fingerprint Database - A Security Tool for the Solaris Operating Environment Files
  sfpc-1.2.tar.Z - The Solaris™ Fingerprint Database Companion (sfpC) is a tool designed to automate the process of querying the Solaris Fingerprint Database (sfpDB).
  sidekick.sh.Z - SideKick is a tool developed to automate the collection of MD5 files signatures.

  
  
  
• sendmail

  For the use of Solaris™ Operating Environment Security - Updated for Solaris 8 Operating Environment (04/01).

  
  
  
• nis.mapping

  This file is a template that is described in the Sun BluePrints OnLine article Using dsimport to Convert NIS Maps to LDAP Directory Entries.

  
  
  
• Auditing in the Solaris ™ 8 Operating Environment

  These files are described in the Sun BluePrints OnLine article titled Auditing in the Solaris™ 8 Operating Environment. The tar archive, in which these files are stored contains the three BSM configuration files required to implement the changes recommended by the article. The article is available from http://www.sun.com/0201/auditing_config.pdf

  
  
  
• Solaris and LDAP Naming Services: Deploying LDAP in the Enterprise

  Supplemental Files for the Solaris and LDAP Naming Services: Deploying LDAP in the Enterprise Sun BluePrints book. Shell script which automatically configures an iPlanet™ Directory Server 4.12 to support native LDAP clients. (Script updated on 10/01)

  
  
  
• MR System for Rapid Recovery

  MR packages are modular additions to the Solaris™ Operating Environment mini-root (or boot image) served up by a JumpStart™ server. The MR additions provide a framework to enable the addition of OS extensions into the JumpStart mini-root for use when system recovery may be necessary. A mini-root modified by MR allows a client system booting from it to have access to tools such as VxVM, Networker, NetBackup.

  
  
  
• nddconfig
  

  For the use of Solaris™ Operating Environment Network Settings for Security - Updated for Solaris 8 Operating Environment (12/00)(Script updated on 10/01).

  
  
  
• osmin-updt1.tar.Z
  

  For the use of Solaris™ Operating Environment Minimization for Security: A Simple, Reproducible and Secure Application Installation Methodology - Updated for Solaris 8 Operating Environment(11/00).

  
  
  
• Supplemental files for the Solaris and LDAP Naming Services Sun BluePrints

  Contains templates and an RC generation script for the use of Solaris and LDAP Naming Services Sun BluePrints.

  
  
  
• Download Solaris™ PC NetLink Sizing Tool Spreadsheet (60 K)

  This file includes the Solaris™ PC NetLink Sizing Tool spreadsheet described in Chapter 5 of the Sun BluePrints publication Solaris PC Netlink: Performance Sizing and Deployment. This is Version 12 of the tool. To use, save the file in a directory, cd to the directory, then use the Solaris command "tar xvf ./PCNL_Sizing_Tool12.tar" to untar the file. On Microsoft Window machines, recent releases of WINZIP can be used to access the files.

  
  
  
• Disaster Recovery Form (PDF)

  For the use of Disaster Recovery Requirements Analysis (07/00).