[pca] PCA features: Check if SST(aka JASS) is installed on the system to analyze.
Martin Paul
martin at par.univie.ac.at
Tue Oct 27 16:18:37 CET 2009
Hi Michele,
> echo " * Package SUNWjass is installed. Be prepared to audit your *"
> echo " * JASS settings after patching and possibly re-apply JASS. *"
It's probably fine to do such things in a wrapper, like other local
checks, or advices from the senior to the junior administrators.
The fact that SUNWjass is installed doesn't have to mean that it is
used, and the more informational output a tool creates the less it is
read, I guess. It's probably common sense to run any hardening tools
again after a system modification (like a patch install). I don't think
that a patch should modify a system in a way that makes it more unsecure
than it was before by changing some settings, and I can't remember any
such issue ..
Thanks for the feedback, anyway.
Martin.
More information about the pca
mailing list