Deconstructing the Security Capabilities of the Solaris 10 OS

Glenn Brunette is a Sun Distinguished Engineer with nearly 15 years experience in information security. Glenn currently works in Sun's Global Sales and Service CTO as the Director and Chief Architect of the GSS Security Office. At a recent Sun event, CEC, he delivered a talk called "Hack-Fu - Deconstructing the Security Capabilities of the Solaris 10 OS."
Glenn says,

The presentation is structured from the viewpoint of a potential attacker examining the system from the network. As each new capability is discussed, barriers are lifted -- one by one -- until the attacker is given root access inside a Solaris 10 non-global zone.

References:

• Restricting Service Administration in the Solaris 10 Operating System
• Limiting Service Privileges in the Solaris 10 Operating System
• Privilege Debugging in the Solaris 10 Operating System
• Eliminating Web Page Hijacking Using Solaris 10 Security
• OpenSolaris Security Community Presentations Library