Book Image

Oracle Solaris 11: First Look

By : Philip P. Brown
Book Image

Oracle Solaris 11: First Look

By: Philip P. Brown

Overview of this book

Oracle Solaris provides innovative, built-in features that deliver breakthrough high availability, advanced security, efficiency, and industry-leading scalability and performance to help businesses grow. "Oracle Solaris 11: First Look" covers the new features and functionality of Oracle Solaris 11 and how these new features and improvements will make it easier to deploy services to the enterprise while improving performance and reducing total cost of ownership.This book starts with coverage of Image Packaging System and the new installation methods. It then moves swiftly to network configuration. The book also includes some security features and improvements.  
Table of Contents (19 chapters)
Oracle Solaris 11: First Look
Credits
About the Author
About the Reviewers
www.PacktPub.com
Preface
IPS Package Reference
New ACL Permissions and Abbreviations
Index

Mandatory auditing


Auditing is now enabled by default in Solaris 11. Previously, enabling auditing required running the bsmconv tool, and then rebooting. Now, however, it is an SMF service, svc://system/auditd:default, and can be enabled and disabled without rebooting. Additional good news is that there have been some internal performance optimizations for auditing as well.

Audit changes now must be done only through auditconfig. It is no longer possible to edit the old plaintext file /etc/security/audit_startup.

As usual for the audit daemon, logs are stored by default in the /var/audit directory. It is possible for each zone to have its own audit logs, or for the global zone to be responsible for everything. See the Audit policies section of this chapter for more details.

Auditing basics

For those people who have not previously had to deal with auditing under Solaris, here is a brief overview. Audit logging allows you to record various events that happen to the system. Such events can include...