After installing patch 121308-03, all attempts to start the SMC generated the following error messages: Exception in thread "main" java.lang.UnsupportedClassVersionError: com/sun/management/viperimpl/console/BaseConsoleOptionsManag er (Unsupported major.minor version 49.0)at ...

I'm looking for a RADIUS PAM module to use with Solaris 9 SPARC. Does anyone have any experience, recommendations?PM

I need to work with potentially thousands of labeled compartments for a single classification. Can anyone:Give me a breakdown on why this could be a very bad idea. (Access issues, maintenance, and security risks, whatever)Provide a very clear definition of compartments and how to use them.Give ...

Hi all, hoping you can help me and I'm fairly new to Solaris. We have a production email server running Solaris 10. The server itself is a Sun Netra T1 200. The other day, it rebooted on it's own. After checking the syslog message I found out that the reboot was caused by a kernel ...

We are using Nessus 3.0.5 build W313 with all standard plug-ins in order to verify the security of our system (Netra 210, Netra 440). This tool is complaining that the SSH version contained in ALOM 1.6.3 is older than 3.1.Here is the Nessus report:You are running a version of OpenSSH which is older ...

Hi,I really need help to ge a driver installed on Trusted Solaris 8.When I try to execute the "add_drv" command I get:Insufficient priveledge to run this program.I know from running getfpriv that I need the proc_audit_tcb priveledge but how do I get that? I have logged in as root.I ...

Because the security enhancement for stringent password requirment, I want to enforce the OSremember the previous ten password and does not allow repetedly using the same password.However, I have heard that MINDIFF will be effective since solaris9, not sure about Solaris6Does anyone can ...

In NSA's Manual-130, there is a proceedure that says in order to "declassify" RAM that has been in a secure area, you either destroy it, or write to in every memory loacation, with 1's and then 0's and then a random character. I have looked but have not found how to do this for a ...

Hello, hopefully I am posting this in the correct forum. I am trying to use Keytool to install a certificate purchased through Entrust. I have installed in in IIS successfully, but when I get to the Import portion of the keytool, I get an error that states:"Keytool error: java.lang.Exception: ...

Have a stupid question for anyone that can help.... I have installed Netscape 7.0 and do not have any problems using it. I have also installed Adobe Reader 7.0, again the application itself runs fine with no problems. The TSOL environment is very simple. Java 1.5.0.3 is loaded as well, (along ...

I have configured my application on server..locally i am able to access it but on my orgnaisation's intranet its not working Error is coming "A connection was forcibly stopped by host "2 more applications are easily acessable on intranet..I am using sun application server

Hi administrators,can anyone suggest, how to configure the SunOne LDAP to allow "anonymous bind" for ldapsearch ? It is installed on Solaris server, 5.8 if I remember correctly.Thank you very much for your help!Peter

HelloIn a desktop, standalone, not networked in a LAN, that does not even have a peer-to-peer computer in the local environment, but connected to the Internet for Browsing (The desktop is not a web server ) , e-mail and chat, what are the ports that are absolutely needed to be kept open ?How ...

I am running Trusted Solaris 8 12/02 x86I have installed patches 125235-01 and 125237-01. It appears the spring forward time change works however the fall back time change does not seem to be losing an hour. I performed the following steps to test the time changes.Spring forward time change:1. ...

hi scholars,This is sasibhushan.p me a sys-admin. I would be grateful to u if u kindly sove my problem regarding apache2 in solaris10i know that apache2 is a shipped software in solaris10. i have configured apache2 as# cp /etc/apache2/httpd-std.conf -example / etc/httpd.confin httpd.conf i have ...

We have a requirement to have passwords that are over 8 character. It seems that Solaris password encryption does not support over 8. By setting the /etc/security/policy.conf variable CRYPT_DEFAULT to md5 it will now take and use passwords over 8 characters. The side effect to this is that the ...

Dear SSH experts,I was working for troubleshooting SSH for the whole afternoon. I have no idea what's wrong with my configuration.Whatever you input password or not,your login window hung up. Please refer to the following debug log:root@walden # /usr/lib/ssh/sshd -ddddebug1: sshd version ...

How do I stop error messages from popping up on my terminal screen?

Hi Is there an Access Control List support for tmpfs on solaris filesystem?If yes, Please let us know whether any patch exists for Solaris-8,9,10 to support ACL(Access Control Lists) on Tmpfs File System.Because we are not able to use "setfacl" command for files/directories present in Tmpfs ...

I'm using Trusted Solaris 8 7/03 and when I try to display the scheduled jobs via SMC I get the following error: "The management server cannot perform the operation requested. Verify that the CIMOM is running. The actual error reported was: RMIERROR". I didn't see any process running with a ...

When creating manual entries in SA/SP tables on Solaris 10 using ipseckey & ipsecconf utilities or doing it programmatically is it possible to set the correspondesnce between the specific SA and SP. On linux it can be done by giving the unique ID to the SA and then setting this ID for ...

Hi Guys,I am wondering if TSol-8 will install and run ok on the Sun Fire V440 Server?Any ideas?

This info is ALSO attached, so you can download it:--For any Trusted Solaris 8 customers running in Australia or Indianawho did not implement time changes for 2006 via Infodoc 83617, we have made an alternate method available to make these changes.There is a way to make use of the binaries ...

Hi , i have a problem with a command,which gets executed from command line succesfully but fails through an executable.In order to execute the command the user should have uid and euid to be equal to a certain value..All commands which gets executed through the command line uses a genral ...

Hi,Can someone show an example of an acl entry for the tsolinfo file ?There is no example in the documentation and the setfacl format doesn't work as far as I can tell.Thanks.J.D.

Are there any C commands to get the collor that belongs to a label?I know I can parse the label_encodings file and figure it out but I was hoping that TSOL 8 would provide a command to get the collor for a label without me having to parse the label_encodings file.thanksPerry ...

Hi,I have several java processes running as 'nobody' with a SECRET label. A standard 'ps -ef' from a SECRET workspace finds the processes, but not pgrep java or pgrep -U nobody I've tried several combinations of parameters and it seems pgrep must not be running at the right label. Is this ...

Hello,Thinking to migrate to TS, I have a few questions about accounting on this system.On Solaris 8, accounting only logs commands, and not their parameters. For exemple, <div class="pre"><pre>$> rm -rf /</pre></div>would only be logged as<div ...

Trying to install TS 8 12/02 on an IBM xSeries 346. After the installation of both CD's, the system hangs during bootup at "Updating device allocation database", which occurs whenever a reconfigure reboot is performed. I've traced the hangage down to add_allocatable, which appears ...

I am trying to load star office and when I load a cd it does not mount. I tried to start vold but it does not start.Any ideas? I am a TSOL novice.

I want to now if and how I can configure 2 xntpd process at the same time.I have TSOL 8 703 with 2 network cards one is card is locked down to high class and the other one is locked down to low class.I want to run a xntpd client at high class and anouther xntpd server at low class.The high ...

Does anyone have any news of when the (EAL4) certified edition of TSOL8 02/04 will be available?

Has anyone ever seen an issue on a NIS + server that does not allow new users to be properly created within SMC on TSOL 8? I have to reboot to solve the issue? Also, has anyone ever rebooted a NIS+ server in a Sun Ray environment while users are logged in? Does it Kill there sessions?

I installed Trusted Solaris Certified Edition and the window manager displayed "Certified Edition" at the far right on the trusted stripe but I later re-installed and now the window manager displays 齆ot Licensed?

Hola!For many years now, my organization has been a loyal Solaris customer. And while we still have issues with the default setup we have been able to get by with information from the blueprint articles and the tools (a big thanks to Alex Noordergraaf, Keith Watson, and Glenn Brunette!). In ...

Sun Alert ID: 102017Synopsis: Security Vulnerability With Java Management Extensions in the Java Runtime Environment may Allow Untrusted Applet to Elevate PrivilegesCategory: SecurityProduct: Java 2 Platform, Standard EditionBugIDs: 6268876Avoidance: UpgradeState: ResolvedDate Released: ...

I am trying to find a way to setup an automatic IPSec keyed connection between Solaris, and Linux. From this forum, what I understand is we can do IKE on the Solaris, and Racoon on the Linux. I want to do the simplest IPSec connection with automated Key using these two. My are questions in ...

Hello,I am running Solaris 10 (Unpatched fresh install on a Sun Blade 150). I was writing a shell script to automate some reporting with BART and sfDB. I am checking the content of the following directories:/lib/usr/var/optagainst the Solaris Finger Print Database using the Solaris Finger Print ...

Hi, sorry for this duplicate and ignorance if many people have asked already and this is common FAQ issue. In that case, please suggest the URL and if any better DL, please suggest me it as well.I am now trying to establish ipsec connections using certificate based authentication. I run the ...

Hey Everyone,I was wondering if anyone has a driver for SST that is configured to harden a server for just Sunray use? I didn't want to reinvent the wheel if I don't have to. Thanks in advance. Rob

I create a role account and you shouldn't be able to directly login as the account. Which was working OK until we upgraded OpenSSH to verion 3.8. Is there way of pluging this hole without down grading OpenSSH? Thanks

Hi. I have downloaded Solaris Security Toolkit 4.2 package, English from Sun Downloads. When trying to install I get: osiris:/soft% pkgadd -d SUNWjass pkgadd: ERROR: attempt to process datastream failed - open of <SUNWjass> failed, errno=2 pkgadd: ERROR: could not process datastream ...

How can I turn off xntpd from listening on port 123 through JASS? I just want xntpd to synchronize with timehosts in the local network but not listen on any port in the host where jass has been run?

Hi, After running JASS, the gnome log in is talking longer on loading log in page and the layout of the screen has been messy. Any sugguestion on how I can tune it back to normal without undo hardening, please. Regards, Kat

My company has found a critical vulnerability at Sun Java System Access Manager. how can we report about the vulnerability?

Hi All,I have some problems in a Ultra-10 running Solaris 8. I have detected the next problems:- The NTP exit on signal 15 - If you execute the date command every 30 minutes, the date shown is always (for example) 9:18 03-03-2006- syslog is not still running - lastlog show 5 last lines diferent ...

Hi,is it possible to upgrade the PAMs in Solaris 8 to use features in /etc/default/passwd available to Solaris 10?For instance, I'd like to use some of the settings ...DICTIONDBDIR DICTIONLIST HISTORY MAXREPEATS MINALPHA MINDIFF MINDIGIT MINLOWER MINNONALPHA MINSPECIAL MINUPPER NAMECHECK ...

Hi, I was trying to figure out which was more comprehensive, the patchdiag.xref or the list of patches for products. Turn out that the list of patches (which include the list of withdrawn patches) did not contain all the patch ID of the obsoleted/withdrawn patch. Does this mean that the list of ...

This problem was previously addressed on TSOL 8 07/03 (<a href=" http://supportforum.sun.com/salerts/index.php?t=msg&amp;goto=1027& ;amp;rid=0" target="_blank"> http://supportforum.sun.com/salerts/index.php?t=msg&goto =1027&rid=0</a>) but has apparently resurfaced on ...

Hi ,Whats the diference between Standard Soalris 10 and Trusted Solaris 10 ?I think, in the past the standard version of Solaris have been evaluated but at lower levels -- could you please tell me if the standard Solaris 10 has been or is in the process of being evaluated for Common Criteria ...