Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

jumpstart hardening

Status
Not open for further replies.
kahn630

kahn630

Technical User
Mar 10, 2005
29
US
I am trying to harden the securit script to jumpstart server:
cd /jumpstart3/Solaris9_904_sparc
[tjumpa1:root]cd security
[tjumpa1:root]ls -l
total 60
-rwxr-xr-x 1 root other 174 May 26 09:16 TCP_sequence.sh
-rwxr-xr-x 1 root other 281 May 26 11:21 create_FTPusers.sh
-rwxr-xr-x 1 root other 174 May 26 11:36 crontab_permissions.sh
-rwxr-xr-x 1 root other 162 May 26 11:00 directory_sticky_bit.sh
-rwxr-xr-x 1 root other 58 May 19 10:00 disable_boot.sh
-rwxr-xr-x 1 root other 581 May 25 15:52 disable_inetd.sh
-rwxr-xr-x 1 root other 127 May 25 16:00 disable_sendmail.sh
-rwxr-xr-x 1 root other 663 May 25 16:06 disable_standard_boot_services.sh
-rwxr-xr-x 1 root other 905 May 25 14:02 disable_standard_services.sh
-rwxr-xr-x 1 root other 203 May 25 16:21 enable_stack_protection.sh
-rwxr-xr-x 1 root other 84 May 26 10:59 file_permissions.sh
-rwxr-xr-x 1 root other 214 May 26 10:35 ftp_logging.sh
-rwxr-xr-x 1 root other 179 May 26 10:15 inetd_tracing.sh
-rwxr-xr-x 1 root other 212 May 26 11:39 limit_failed_login.sh
-rwxr-xr-x 1 root other 474 May 26 10:40 log_permissions.sh
-rwxr-xr-x 1 root other 263 May 26 10:52 logging_root_file.sh
-rwxr-xr-x 1 root other 901 May 25 16:10 network_parameter_modifications.sh
-rwxr-xr-x 1 root other 178 May 26 11:16 nobody_RPC.sh
-rwxr-xr-x 1 root other 186 May 26 10:57 nosuid_option.sh
-rwxr-xr-x 1 root other 355 May 26 11:28 prevent_Xserver.sh
-rwxr-xr-x 1 root other 264 May 26 11:24 prevent_syslog.sh
-rwxr-xr-x 1 root other 120 May 26 11:19 remove_rhosts.sh
-rwxr-xr-x 1 root other 169 May 25 16:24 restrict_NFS_client_requests.sh
-rwxr-xr-x 1 root other 209 May 25 16:17 restrict_core_dumps.sh
-rwxr-xr-x 1 root other 147 May 26 11:34 restrict_cron.sh
-rwxr-xr-x 1 root other 795 Jul 7 15:06 security.sh
-rwxr-xr-x 1 root other 135 May 19 10:45 set_daemon_umask.sh
-rwxr-xr-x 1 root other 235 May 26 10:32 syslog_authpriv.sh
-rwxr-xr-x 1 root other 487 May 26 13:51 user_umask.sh
-rw-r--r-- 1 root other 214 May 26 10:34 ~




more /jumpstart3/Solaris9_904_sparc/finish

BASE=/a
MNT=$BASE/mnt
ADMIN_FILE=$BASE/tmp/admin
.
.
.
.
.
.
#
echo "running security scripts"
cp -r ${MNT}/security $BASE/var/tmp/security
chmod 700 $BASE/var/tmp/security
#
#
#
echo "security scripts done"
#
#
When I jumpstart the client, from jumpstart server it does copy the script dir on to client under /var/tmp/security.....who can I make this
/jumpstart3/Solaris9_904_sparc/security to execute when client reboot after jumpstart is complete.


Thanks
 
Sort by date Sort by votes
Hi,

We accomplish similar tasks by adding an rc script rc2.d or rc3.d that runs the script(s) at boot. You can even have the script delete itself upon completion if necessary.

Hope this helps!

-Joe
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

scorney
  • Locked
  • Question
Install Solaris using boot media on a sun 5220 not e/w DVD rom... Jumpstart? 1
Replies
11
Views
255
scorney
scorney
darshadow
  • Locked
  • Question
jumpstart script
Replies
2
Views
69
cndcadams
cndcadams
cndcadams
  • Locked
  • Question
jumpstart sol10 release 8/10
Replies
1
Views
55
cndcadams
cndcadams
morvern
  • Locked
  • Helpful tip
Solaris 10: Jumpstart Installation 1
Replies
1
Views
86
KenCunningham
KenCunningham
mahalingam1
  • Locked
  • Question
jumpstart boot problem:can not open kernel/sparcv9/unix
Replies
5
Views
93
mahalingam1
mahalingam1

Part and Inventory Search

Sponsor

Back
Top