Solaris Security Toolkit (JASS)

The Solaris Security Toolkit, formerly known as the JumpStart Architecture and Security Scripts (JASS) toolkit, provides a flexible and extensible mechanism to harden and audit Solaris Operating System systems.

The Solaris Security Toolkit simplifies and automates the process of securing Solaris OS systems and is based on proven security best practices and practical customer site experience gathered over many years.

Originally released in 1999, this toolkit can be used to secure systems running Solaris 2.5.1 through Solaris 10 on SPARC, Intel or AMD platforms, is freely available and supported under the Solaris support contract.

The Solaris Security Toolkit leverages the work of the Solaris Secure by Default project and extends upon it by offering a more complete platform hardening (and audit) capability whereas the Solaris Secure by Default project is only focused on limiting externally exposed network services.

Download & Documentation

To download a copy of the Solaris Security Toolkit or view its documentation, see: http://www.sun.com/software/security/jass/

Resources

In addition, a few good articles on customizing the Solaris Security Toolkit can be found at:

• http://blogs.sun.com/DanX/entry/solaris_security_toolkit_customization
• http://blogs.sun.com/jimlaurent/entry/using_the_solaris_security_toolkit