SCN Research: Secure Solaris Server Package

Secure Solaris Server

Secure Solaris Server Features
• Up-to-date Sparc or X86 Solaris 10, with all current Sun Microsystems-approved patches applied.   All unnecessary kernel and OS services disabled.
• Complete filtering based on host IP number, network, domain name, and service.
• Daily reports discuss security events, along with disk space, CPU usage, illegal access attempts,     password file status, etc. Completely customizable.
• One-time (skey) passwords. Root restriction logins. Password checking and restrictions on bad   passwords (not allowed).
• Network performance improved over stock OS via special utilities.
• Various Internet services can be turned on and off easily via control files.
• Complete logging of all machine accesses and events stored on either firewall machine or internal   machine.
• Complete control over which ports logins are allowed on, and reports are generated based on login   both successful and not successful.
• Control of individuals or groups that receive security reports generated by system.
• Updated BIND/DNS version.
• Installation of TripWire and other network security applications.
• Encrypted session support including fully encrypted telnet, FTP, and filecopy.
• All known Solaris security issues have been fixed.
• All setuid programs not needed are removed.
• Postfix Mail Transfer Agent replaces sendmail for SMTP operation.
• Process-watchers constantly check firewall for problems.
• Stack-overflow defenses are standard.
• Optional Unix services including NTP, SNMP, etc.
• Automated paging/email service for security alerts, sniffer detection, other security or system   anomalies.

Web
• If a web server is required, servers based on custom Apache 1.3.37 will be used, with full support for access control, virtual domains, server extensions, etc.
• Anonymous FTP server which allows anonymous people access to a restricted area of the system.
• Full support for virtual FTP directories (based on WUFTPD with additional SCN Research enhancements).

Hardware Requirements (minimum)
• Current Sparc Ultra or Opteron systems / Intel X86 Pentium 4/Xeon systems.
• Graphics card and monitor not required.
• 36GB disk minimum. More needed for USENET news or large web proxies. Mirroring recommended.
• 1024Meg of RAM minimum.
• GigE cards fully supported.

SCN Research Price
• Full system price is $1000 which includes all of the above plus training on administration of the system.
• Price does not include travel time for on-site installation.
• SCN Research will conduct ongoing administration of the system at the rate of $150/hour.