Solaris Kernel Tuning for Security
SecurityFocus is carrying an excellent article on securing Solaris. Here's an excerpt from the article:
The Solaris kernel provides a great deal of user-configurable control over the
system TCP/IP stack. Everything from cache table lifetimes to the number of TCP
connections that the system can address are controllable. However, without
understanding the underlying need for tuning these kernel parameters, many
system administrators choose to ignore them - thereby leaving their systems
vulnerable to a resourceful assailant. This article by Ido Dubrawsky discusses the
ways in which these parameters can be adjusted to strengthen the security posture
of a system.
Go read the full article here