Re: Solaris OS versions supported on the cool thread series

In article <e0hod5$1jbe$1@xxxxxxxxxxxxxxxxxxx>,
Tim Hogard <thogard@xxxxxxxxxxxx> wrote:
Its a very hard problem to solve because as a vendor we can't fix
broken parts of the OS.

Isn't Solaris 10 open-source now? In theory you _could_ fix the
OS, or at least find the issue and report it as a bug, maybe even with a
patch. I wonder how helpful this has been regarding developers like
Wolfram finding behavior bugs....

We won't certify our product on Solaris
10 until they fix the problem where you can hide a root kit in
services and no one will ever know it. Right now there is no way

You mean in the new services facility that replaced init.d
scripts? IIRC all the config info is in XML?

security rating of the whole system is a bad joke. The thing needs
to be rewritten to use text files so it can be audited. Maybe they

XML == text?

/var/svcs/profile looks pretty readable to me, and XML files
should be easier to audit than ad-hoc-structured text...
--
"When in doubt, use brute force."
- Ken Thompson
.

Loading