Nov 082010
 

tcpdrop is a free utility to drop an established TCP connection in Sun solaris. It is a port of the tcpdrop utility from FreeBSD and openBSD. tcpdrop doesn’t do what it says on the tin and nothing more but does it very well. tcpdrop works in Solaris 10,9,8

Continue reading »

May 122009
 

PCP is a very useful security and adminitration script that can help you quickly find Processes (PIDs) having particular TCP Port(s) open, TCP ports open by specific PIDs or even list all the TCP Ports open by all PIDs running on your system.

Continue reading »

Mar 222008
 


Do you you DHCP to get the IP Address for your Solaris Server or workstation then its worth understanding what your DHCP Agent by default requests for from the DHCP server and help avoid certain network issues like “unknown” hostname issue as I’ve descrbed here.

The DHCP Agent by default requests for the

Subnet Mask

Default Router

Hostname

DNS Domain

Broadcast Address

Encapsulated Vendor Option (vendor specific information as described in RFC 2132)

Continue reading »

Mar 222008
 


If you are using DHCP to receive IP Address for your Sun Solaris system, you may end up with no hostname assigned to the system. This can be confirmed when there is no hostname at the prompt or if the output for the command “hostname” is as follows:

# hostname
unknown

or the /etc/hosts file has an entry as follows:

# cat /etc/hosts
#
# Internet host table
#
127.0.0.1 localhost
192.168.0.3 unknown # Added by DHCP

Continue reading »

Mar 192008
 

To add a Static Route in Sun Solaris operating system, you can use the route command. This will dynamically update the Kernel IP Routing table. However, when a server is restarted, these routes will be lost. To prevent this from happening, add a startup script S76static-routes with all the route commands for the static route that needs to persist. This will ensure that the route gets added at boot time.

Continue reading »

Mar 192008
 

IP packet forwarding is the process of routing packets between network interfaces on one system. A packet arriving on one network interface and addressed to a host on a different network is forwarded to the appropriate interface. While this is a job for the network router, Servers with multiple interfaces connected to different network can perform this action as well. This behaviour as a router is a default in Sun Solaris Operating Systems.

Continue reading »

Jan 212008
 

There is every little chance that one loses or rather forgets the root password of his Sun Solaris servers. In the event, this happens, there is a way out of it. Well the way and infact the only way is to reset the password as there is no way to recover it. Recovering/restting the password involves booting the server in Single User mode and mounting the root file system.

Continue reading »

Jan 212008
 

OpenSSH is a free opensource version of the SSH connectivity tools. OpenSSH encrypts all traffic (including passwords) to effectively eliminate eavesdropping, connection hijacking, and other attacks unlike Telnet,rlogin or ftp where the data is not encrypted and transmitted in plain text. Additionally, OpenSSH provides secure tunneling capabilities and several authentication methods, and supports all SSH protocol versions.

Continue reading »

Jan 102008
 

Syslog daemon in Solaris by default is enabled for remote logging and will listen on UDP port 514 for syslog messages from remote systems. Unless, the server is acting as a remote logging server, this can be a Security issue as a malicious user can launch a Denial Of Service (DoS) attack on the server.

Continue reading »