On 27 July 2017 at 23:23, Joven Sabanal <[email protected]> wrote: > We are doing vulnerability scan on our Zone virtual machine and we found > vulnerabilities that need to resolve in order to pass the security scan. We > are using Nexpose Community vulnerability scanner and the following are the > vulnerabilities detected: > > Oracle Solaris 11 Unsupported Point Release > For item 1, it's recommendation is to download latest Solaris 11.
This is SmartOS, an illumos distribution which is unrelated to Oracle Solaris 11. The scanner appears to be incorrectly identifying the operating system, which is not a good start for a tool like this. > Solaris Loginlog Undefined > Solaris Core Files Unprotected > Solaris Unrestricted crontab Access > User home directory mode unsafe > For items 2 - 5, I apply what's indicated on the vulnerabilities > recommendation but even applying it and rebooted the VM, it's still not > resolve. This list is extremely vague so it's hard to make any concrete recommendations. What is the exact check that's being done for each item in the list? Cheers. -- Joshua M. Clulow UNIX Admin/Developer http://blog.sysmgr.org ------------------------------------------- smartos-discuss Archives: https://www.listbox.com/member/archive/184463/=now RSS Feed: https://www.listbox.com/member/archive/rss/184463/25769125-55cfbc00 Modify Your Subscription: https://www.listbox.com/member/?member_id=25769125&id_secret=25769125-7688e9fb Powered by Listbox: http://www.listbox.com
