On Feb 20, 2008 8:08 AM, Glenn Brunette <Glenn.Brunette at sun.com> wrote: > I also agree with that sentiment, although I would like to stress > one clarifying point. Integrating the default JASS actions into > Solaris and integrating some form of auditing would be a huge step > forward but that alone does not eliminate what JASS does.
I wholeheartedly agree. I use a customized version of JASS for server hardening and configuration across Solaris 8 - Nevada. I have custom drivers to affect configuration (may or may not be security related) that is specific to various sites and have written a large number of custom finish scripts to automate the vast majority of post-installation configuration of servers. It is an important tool that does not lose its relevance the day that Solaris 10++ is released. I am quite OK with Sun's official stance to be different than mine, so long as the code is opened. I think this is one area where the (most likely sysadmin) community will give the code some love. -- Mike Gerdts http://mgerdts.blogspot.com/
