DOCSLIB.ORG

Open Directory Administration for Version 10.5 Leopard Second Edition

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text

Load more

Mac OS X Server Open Directory Administration For Version 10.5 Leopard Second Edition Apple Inc. © 2008 Apple Inc. All rights reserved. The owner or authorized user of a valid copy of Mac OS X Server software may reproduce this publication for the purpose of learning to use such software. No part of this publication may be reproduced or transmitted for commercial purposes, such as selling copies of this publication or for providing paid-for support services. Every effort has been made to make sure that the information in this manual is correct. Apple Inc., is not responsible for printing or clerical errors. Apple 1 Infinite Loop Cupertino CA 95014-2084 www.apple.com The Apple logo is a trademark of Apple Inc., registered in the U.S. and other countries. Use of the “keyboard” Apple logo (Option-Shift-K) for commercial purposes without the prior written consent of Apple may constitute trademark infringement and unfair competition in violation of federal and state laws. Apple, the Apple logo, iCal, iChat, Leopard, Mac, Macintosh, QuickTime, Xgrid, and Xserve are trademarks of Apple Inc., registered in the U.S. and other countries. Finder is a trademark of Apple Inc. Adobe and PostScript are trademarks of Adobe Systems Incorporated. UNIX is a registered trademark of The Open Group. Other company and product names mentioned herein are trademarks of their respective companies. Mention of third-party products is for informational purposes only and constitutes neither an endorsement nor a recommendation. Apple assumes no responsibility with regard to the performance or use of these products. 019-1190/2008-02-25 3 Contents Preface 11 About This Guide 12 What’s New in Version 10.5 12 What’s in This Guide 14 Using This Guide 14 Using Onscreen Help 15 Mac OS X Server Administration Guides 16 Viewing PDF Guides on Screen 16 Printing PDF Guides 17 Getting Documentation Updates 17 Getting Additional Information Chapter 1 19 Directory Services With Open Directory 19 Benefits of Using Directory Services 20 Directory Services and Directory Domains 21 A Historical Perspective 21 Data Consolidation 23 Data Distribution 24 Uses of Directory Data 25 Access to Directory Services 25 Inside a Directory Domain 27 Structure of LDAP Directory Information 28 Local and Shared Directory Domains 28 About the Local Directory Domain 29 About Shared Directory Domains 30 Shared Data in Existing Directory Domains 30 SMB Services and Open Directory 31 Open Directory as a Primary Domain Controller 32 Open Directory as a BDC Chapter 2 33 Open Directory Search Policies 33 Search Policy Levels 33 Local Directory Domain Search Policy 34 Two-Level Search Policies 3 35 Multilevel Search Policies 36 Automatic Search Policies 38 Custom Search Policies 38 Search Policies for Authentication and Contacts Chapter 3 39 Open Directory Authentication 40 Password Types 40 Authentication and Authorization 41 Open Directory Passwords 41 Shadow Passwords 42 Crypt Passwords 42 Providing Secure Authentication for Windows Users 43 Offline Attacks on Passwords 44 Determining Which Authentication Option to Use 45 Password Policies 46 Single Sign-On Authentication 46 Kerberos Authentication 47 Breaking the Barriers to Kerberos Deployment 48 Single Sign-On Experience 48 Secure Authentication 49 Ready to Move Beyond Passwords 49 Multiplatform Authentication 49 Centralized Authentication 50 Kerberized Services 50 Configuring Services for Kerberos After Upgrading 51 Kerberos Principals and Realms 51 Kerberos Authentication Process 52 Open Directory Password Server and Shadow Password Authentication Methods 54 Disabling Open Directory Authentication Methods 55 Disabling Shadow Password Authentication Methods 56 Contents of the Open Directory Password Server Database 56 LDAP Bind Authentication Chapter 4 57 Open Directory Planning and Management Tools 58 General Planning Guidelines 61 Estimating Directory and Authentication Requirements 62 Identifying Servers for Hosting Shared Domains 62 Replicating Open Directory Services 63 Replica Sets 64 Cascading Replication 65 Planning the Upgrade of Multiple Open Directory Replicas 65 Load Balancing in Small, Medium, and Large Environments 66 Replication in a Multibuilding Campus 4 Contents 66 Using an Open Directory Master, Replica, or Relay With NAT 67 Open Directory Master and Replica Compatibility 67 Mixing Active Directory and Open Directory Master and Replica Services 69 Integrating With Existing Directory Domains 70 Integrating Without Schema Changes 70 Integrating With Schema Changes 70 Avoiding Kerberos Conflicts With Multiple Directories 72 Improving Performance and Redundancy 73 Open Directory Security 74 Service Access Control Lists (SACLs) 75 Tiered Administration 75 Tools for Managing Open Directory Services 76 Server Admin 77 Directory Utility 77 Workgroup Manager 78 Command-Line Tools Chapter 5 79 Setting Up Open Directory Services 79 Setup Overview 80 Before You Begin 81 Managing Open Directory on a Remote Server 81 Turning Open Directory On 81 Setting Up a Standalone Directory Service 83 Setting Up an Open Directory Master 85 Instructing Users How to Log In 85 Setting Up a Primary Domain Controller 86 Setting Up Windows Vista for Domain Login 87 Setting Up Windows XP for Domain Login 87 Setting Up Windows 2000 for Domain Login 88 Setting Up an Open Directory Replica 90 Creating Multiple Replicas of an Open Directory Master 91 Setting Up Open Directory Relays for Cascading Replication 91 Setting Up a Server as a BDC 92 Setting Up Open Directory Failover 93 Setting Up a Connection to a Directory Server 94 Setting Up a Server as a Mac OS X Server PDC Domain Member 95 Setting Up a Server as an Active Directory Domain Member 97 Setting Up Single Sign-On Kerberos Authentication 98 Setting Up an Open Directory Kerberos Realm 99 Starting Kerberos After Setting Up an Open Directory Master 100 Delegating Authority to Join an Open Directory Kerberos Realm 102 Joining a Server to a Kerberos Realm Contents 5 Chapter 6 103 Managing User Authentication 104 Composing a Password 104 Changing a User’s Password 105 Resetting the Passwords of Multiple Users 106 Changing a User’s Password Type 106 Changing the Password Type to Open Directory 108 Changing the Password Type to Crypt Password 108 Changing the Password Type to Shadow Password 109 Enabling Single Sign-On Kerberos Authentication for a User 109 Changing the Global Password Policy 110 Setting Password Policies for Individual Users 111 Selecting Authentication Methods for Shadow Password Users 112 Selecting Authentication Methods for Open Directory Passwords 113 Assigning Administrator Rights for Open Directory Authentication 114 Keeping the Primary Administrator’s Passwords in Sync 114 Enabling LDAP Bind Authentication for a User 115 Setting Passwords of Exported or Imported Users 115 Migrating Passwords From Mac OS X Server v10.1 or Earlier Chapter 7 117 Managing Directory Clients 117 Connecting Clients to Directory Servers 117 About Directory Server Connections 118 Automated Client Configuration 119 Adding an Active Directory Server Connection 119 Adding an Open Directory Server Connection 120 Removing a Directory Server Connection 120 Editing a Directory Server Connection 121 Monitoring Directory Server Connections 121 Managing the Root User Account 121 Enabling the Root User Account 122 Changing the Root User Account Password Chapter 8 123 Advanced Directory Client Settings 123 About Advanced Directory Services Settings 124 Setting Up Directory Utility on a Remote Server 124 Configuring Mount Records for a Computer’s Local Directory Domain 124 Adding a Mount Record to the Local Directory Domain 125 Removing a Mount Record From the Local Directory Domain 126 Editing a Mount Record in the Local Directory Domain 126 Using Advanced Search Policy Settings 127 Defining Automatic Search Policies 128 Defining Custom Search Policies 129 Defining Local Directory Search Policies 6 Contents 129 Waiting for a Search Policy Change to Take Effect 129 Protecting Computers From a Malicious DHCP Server 130 Using Advanced Directory Services Settings 130 Enabling or Disabling Active Directory Service 131 Enabling or Disabling LDAP Directory Services 131 Using Advanced LDAP Service Settings 132 Accessing LDAP Directories in Mail and Address Book 132 Enabling or Disabling Use of a DHCP-Supplied LDAP Directory 133 Showing or Hiding Configurations for LDAP Servers 134 Configuring Access to an LDAP Directory 136 Configuring Access to an LDAP Directory Manually 138 Changing a Configuration for Accessing an LDAP Directory 139 Duplicating a Configuration for Accessing an LDAP Directory 141 Deleting a Configuration for Accessing an LDAP Directory 142 Changing the Connection Settings for an LDAP Directory 143 Changing the Security Policy for an LDAP Connection 144 Configuring LDAP Searches and Mappings 147 Setting Up Trusted Binding for an LDAP Directory 148 Stopping Trusted Binding With an LDAP Directory 148 Changing the Open/Close Timeout for an LDAP Connection 149 Changing the Query Timeout for an LDAP Connection 149 Changing the Rebind-Try Delay Time for an LDAP Connection 150 Changing the Idle Timeout for an LDAP Connection 150 Forcing Read-Only LDAPv2 Access 150 Ignoring LDAP Server Referrals 151 Authenticating an LDAP Connection 151 Changing the Password Used for Authenticating an LDAP Connection 152 Mapping Config Record Attributes for LDAP Directories 152 Editing RFC 2307 Mapping to Enable Creating Users 153 Preparing a Read-Only LDAP Directory for Mac OS X 153 Populating LDAP Directories With Data for Mac
Recommended publications
  • LS-09EN. OS Permissions. SUID/SGID/Sticky. Extended Attributes

    LS-09EN. OS Permissions. SUID/SGID/Sticky. Extended Attributes

    Operating Systems LS-09. OS Permissions. SUID/SGID/Sticky. Extended Attributes. Operating System Concepts 1.1 ys©2019 Linux/UNIX Security Basics Agenda ! UID ! GID ! Superuser ! File Permissions ! Umask ! RUID/EUID, RGID/EGID ! SUID, SGID, Sticky bits ! File Extended Attributes ! Mount/umount ! Windows Permissions ! File Systems Restriction Operating System Concepts 1.2 ys©2019 Domain Implementation in Linux/UNIX ! Two types domain (subjects) groups ! User Domains = User ID (UID>0) or User Group ID (GID>0) ! Superuser Domains = Root ID (UID=0) or Root Group ID (root can do everything, GID=0) ! Domain switch accomplished via file system. ! Each file has associated with it a domain bit (SetUID bit = SUID bit). ! When file is executed and SUID=on, then Effective UID is set to Owner of the file being executed. When execution completes Efective UID is reset to Real UID. ! Each subject (process) and object (file, socket,etc) has a 16-bit UID. ! Each object also has a 16-bit GID and each subject has one or more GIDs. ! Objects have access control lists that specify read, write, and execute permissions for user, group, and world. Operating System Concepts 1.3 ys©2019 Subjects and Objects Subjects = processes Objects = files (regular, directory, (Effective UID, EGID) devices /dev, ram /proc) RUID (EUID) Owner permissions (UID) RGID-main (EGID) Group Owner permissions (GID) +RGID-list Others RUID, RGID Others ID permissions Operating System Concepts 1.4 ys©2019 The Superuser (root) • Almost every Unix system comes with a special user in the /etc/passwd file with a UID=0. This user is known as the superuser and is normally given the username root.
  • Open Directory & Openldap

    Open Directory & Openldap

    Open Directory & OpenLDAP David M. O’Rourke Engineering Manager Overview • Background on Apple’s Open Directory Technology (8 minutes) – What is it – What is Directory Services • How has Apple integrated OpenLDAP (20 minutes or less) – what has Apple added to OpenLDAP? • Questions and Answers (remaining time) Open Directory • Open Directory is a technology name – Covers both client access technologies and server technologies – Integrates and promotes industry standard technologies • Open Directory is built into Mac OS X & Mac OS X Server – Been there since 10.0 • Open Sourced as part of Darwin – http://developer.apple.com/darwin/projects/ opendirectory/ What Is Directory Services • Abstraction API for read/write access to system configuration and management data – Users, groups, mount records and others – Authentication abstraction Mac OS X Software Directory Services NetInfo LDAP BSD Files Other… Directory Services in 10.3 • Includes – LDAPv3 (read/write), Native Active Directory, NetInfo, NIS, BSD/etc files – Service Discovery: Rendezvous, SMB, AppleTalk, and SLP – LDAPv3 client support replication fail over • Documented Access API and plug-in API – SDK posted – Sample code, sample plug-in, notes – Directory Services Headers are installed in – /System/Library/Frameworks/DirectoryService.framework – Command line tool for directory editing ‘dscl’ 10.3 Usage of Directory Services • Login Window uses Directory Services for all user authentication – Managed Desktop • All Security Framework authentication uses Directory Services • Legacy Unix
  • How to Set up IP Camera by Using a Macintosh Computer

    How to Set up IP Camera by Using a Macintosh Computer

    EDIMAX COMPUTER INC. Edimax IP Camera series How to set up IP Camera by using a Macintosh computer 2011 Edimax Computer 3350 Scott Blvd., Building #15 Santa Clara, California 95054, USA Phone 408-496-1105 • Fax 408-980-1530 www.edimax.us How to setup Edimax IP Camera by a Macintosh computer Introduction The most important thing to setup IP Camera is to assign a static IP address so the camera can work with your network. So far the Edimax IP Cam Admin utility is Windows based only and the program can not work for Macintosh computers. Macintosh users can follow this guide to set up Edimax IP camera. Step 1. Understand the IP address used in your network. Have your Macintosh computer operate as usual. Go into System Preferences. In System Preferences, Go to Network. Select the adapter you are using. It could be an Airport card, a third- party Wireless card, or an Ethernet Adapter. Write down the IP address, subnet mask, Router, and DNS server address. We have a usb wireless card in this example. Its IP address 10.0.1.2 told us that the IP addresses used in the network are 10.0.1.x. All the devices in the network have the first three octets the same, but the last octet number must be different. We decide to give our new camera an IP address 10.0.1.100 because no other computer device use 10.0.1.100. We temporarily disconnect the wireless adapter. You can turn off your Airport adapter if you use it to get on Internet.
  • Linux Filesystem Hierarchy Chapter 1

    Linux Filesystem Hierarchy Chapter 1

    Linux Filesystem Hierarchy Chapter 1. Linux Filesystem Hierarchy 1.1. Foreward When migrating from another operating system such as Microsoft Windows to another; one thing that will profoundly affect the end user greatly will be the differences between the filesystems. What are filesystems? A filesystem is the methods and data structures that an operating system uses to keep track of files on a disk or partition; that is, the way the files are organized on the disk. The word is also used to refer to a partition or disk that is used to store the files or the type of the filesystem. Thus, one might say I have two filesystems meaning one has two partitions on which one stores files, or that one is using the extended filesystem, meaning the type of the filesystem. The difference between a disk or partition and the filesystem it contains is important. A few programs (including, reasonably enough, programs that create filesystems) operate directly on the raw sectors of a disk or partition; if there is an existing file system there it will be destroyed or seriously corrupted. Most programs operate on a filesystem, and therefore won't work on a partition that doesn't contain one (or that contains one of the wrong type). Before a partition or disk can be used as a filesystem, it needs to be initialized, and the bookkeeping data structures need to be written to the disk. This process is called making a filesystem. Most UNIX filesystem types have a similar general structure, although the exact details vary quite a bit.
  • Filenet Image Services Installation and Configuration Procedures

    Filenet Image Services Installation and Configuration Procedures

    IBM FileNet Image Services 4.1.2 Installation and Configuration Procedures SC19-2680-01 IBM FileNet Image Services 4.1.2 Installation and Configuration Procedures SC19-2680-01 Note Before using this information and the product it supports, read the information in .“Notices” on page 273 This edition applies to version 4.1.2 of IBM FileNet Image Services (product number 5724-R95) and to all subsequent releases and modifications until otherwise indicated in new editions. © Copyright International Business Machines Corporation 1984, 2008. US Government Users Restricted Rights – Use, duplication or disclosure restricted by GSA ADP Schedule Contract with IBM Corp. Table of Contents About this document. 15 Revision Log . 15 Typographical Conventions. 16 Accessing IBM FileNet documentation . 16 Feedback . 17 Documentation feedback . 17 Product consumability feedback. 17 Installation Checklists and Required Skills. 18 Installation Checklist for AIX Servers . 18 Installation Checklist for HP-UX Servers. 20 Installation Checklist for Solaris Servers. 21 Installation Checklist for Windows Servers. 22 Required Skills . 23 Installation Planning Considerations. 24 Hardware Requirements . 24 Server Memory . 24 Total Swap Space . 24 Total Disk Space . 25 Multicultural support . 25 Additional Requirements for AIX . 26 Additional Requirements for HP-UX . 26 Additional Requirements for Solaris . 28 Additional Requirements for Windows Server . 28 Software Requirements. 29 Server Naming Convention . 29 Object Name . 29 Domain Name . 29 Organization Name . 29 Image Services software image . 29 RDBMS software . 30 IBM DB2 RDBMS Software . 30 Oracle RDBMS Software (FileNet-controlled) . 30 Oracle RDBMS Software (Site-controlled) . 30 MS-SQL RDBMS Software . 30 Debugging Software . 30 Debugger - AIX . 30 Debugger - HP-UX .
  • AWS Directory Service Setup with Netapp Cloud Volumes Service for AWS Prabu Arjunan, Netapp August 2019

    AWS Directory Service Setup with Netapp Cloud Volumes Service for AWS Prabu Arjunan, Netapp August 2019

    AWS Directory service setup with NetApp Cloud Volumes Service for AWS Prabu Arjunan, NetApp August 2019 Abstract This document provides instructions to help users set up the AWS directory services environment for using NetApp® Cloud Volumes Service for Amazon Web Services (AWS). TABLE OF CONTENTS 1 Overview ................................................................................................................................................ 3 2 Requirements ........................................................................................................................................ 3 3 Creating the AWS Active Directory service ....................................................................................... 4 4 Adding the Active Directory server to Cloud Volumes Service ..................................................... 10 5 Creating a cloud volume that uses the Active Directory server .................................................... 12 Common errors messages....................................................................................................................... 14 References ................................................................................................................................................. 14 Version History ......................................................................................................................................... 14 2 AWS Directory service setup with NetApp Cloud Volume Service for AWS © 2019 NetApp, Inc. All rights reserved. 1 Overview
  • Version 7.8-Systemd

    Version 7.8-Systemd

    Linux From Scratch Version 7.8-systemd Created by Gerard Beekmans Edited by Douglas R. Reno Linux From Scratch: Version 7.8-systemd by Created by Gerard Beekmans and Edited by Douglas R. Reno Copyright © 1999-2015 Gerard Beekmans Copyright © 1999-2015, Gerard Beekmans All rights reserved. This book is licensed under a Creative Commons License. Computer instructions may be extracted from the book under the MIT License. Linux® is a registered trademark of Linus Torvalds. Linux From Scratch - Version 7.8-systemd Table of Contents Preface .......................................................................................................................................................................... vii i. Foreword ............................................................................................................................................................. vii ii. Audience ............................................................................................................................................................ vii iii. LFS Target Architectures ................................................................................................................................ viii iv. LFS and Standards ............................................................................................................................................ ix v. Rationale for Packages in the Book .................................................................................................................... x vi. Prerequisites
  • White Paper | September 2 0 1 7

    White Paper | September 2 0 1 7

    Oracle Directory Services Buyer’s Guide ORACLE WHITE PAPER | SEPTEMBER 2 0 1 7 Disclaimer The following is intended to outline our general product direction. It is intended for information purposes only, and may not be incorporated into any contract. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. The development, release, and timing of any features or functionality described for Oracle’s products remains at the sole discretion of Oracle. ORACLE DIRECTORY SERVICES – BUYER’S GUIDE Table of Contents Introduction 1 Business Drivers 2 Oracle Directory Services 3 Key Considerations for Some Popular Scenarios 4 Cloud 4 Mobile 4 Customer-Facing Internet 4 Employee-Facing Intranet 5 Directory Services Checklist 5 Conclusion 7 ORACLE DIRECTORY SERVICES – BUYER’S GUIDE Introduction In the late 1990s, directory servers were essentially designed as white-page applications for providing users with secure access to enterprise resources through authentication and authorization processes. Since then, their use has been extended to partners and customers, thus creating the need to support an increasing number of diverse users and communities. Today, directory services need to accommodate hundreds of millions of users and provide additional services to break identity silos. With the ubiquitous use of mobile devices as well as cloud deployments and the integration of social networks identities into the enterprise fabric, billions of objects are transacted everyday through directory services. Modern directory services now go beyond the initial capability to store objects in an identity repository. Directory solutions have evolved around three foundation services: » Storage: Persisting and maintaining entries representing identities.
  • Tinkertool System 7 Reference Manual Ii

    Tinkertool System 7 Reference Manual Ii

    Documentation 0642-1075/2 TinkerTool System 7 Reference Manual ii Version 7.5, August 24, 2021. US-English edition. MBS Documentation 0642-1075/2 © Copyright 2003 – 2021 by Marcel Bresink Software-Systeme Marcel Bresink Software-Systeme Ringstr. 21 56630 Kretz Germany All rights reserved. No part of this publication may be redistributed, translated in other languages, or transmitted, in any form or by any means, electronic, mechanical, recording, or otherwise, without the prior written permission of the publisher. This publication may contain examples of data used in daily business operations. To illustrate them as completely as possible, the examples include the names of individuals, companies, brands, and products. All of these names are fictitious and any similarity to the names and addresses used by an actual business enterprise is entirely coincidental. This publication could include technical inaccuracies or typographical errors. Changes are periodically made to the information herein; these changes will be incorporated in new editions of the publication. The publisher may make improvements and/or changes in the product(s) and/or the program(s) described in this publication at any time without notice. Make sure that you are using the correct edition of the publication for the level of the product. The version number can be found at the top of this page. Apple, macOS, iCloud, and FireWire are registered trademarks of Apple Inc. Intel is a registered trademark of Intel Corporation. UNIX is a registered trademark of The Open Group. Broadcom is a registered trademark of Broadcom, Inc. Amazon Web Services is a registered trademark of Amazon.com, Inc.
  • The 12 Essential Tasks of Active Directory Domain Services

    The 12 Essential Tasks of Active Directory Domain Services

    WHITE PAPER ACTIVE DIRECTORY DOMAIN SERVICES The 12 Essential Tasks of Active Directory Domain Services Using the right tools and processes helps reduce administrative overhead and ensures directory service is always available By Nelson Ruest and Danielle Ruest Sponsored by WHITE PAPER ACTIVE DIRECTORY DOMAIN SERVICES ABSTRACT Active Directory Domain Services (AD DS) administration and management includes Sponsored by 12 major tasks. These tasks cover a wide breadth of business needs and are not all performed solely by AD DS administrators. In fact, administrators can and should delegate several tasks to other members of their technical community, technicians, help desk personnel, even users such as team managers and administrative assistants. While delegation is a way to reduce the amount of work administrators have to do when managing AD DS infrastructures, it really only addresses one or two of the 12 tasks, for example, user and group administration as well as end point device administration. The other ten tasks can be staggering in nature—security, networked service administration, OU-Specific Management, Group Policy Object management and many more—and because of this can take up inordinate amounts of time. You can rely on Microsoft’s built-in tools to reduce some of this workload, but are the native tools enough? Perhaps it’s time to reduce AD DS administration overhead by automating most tasks and tightening internal security. Address this by first, determining what the twelve essential labors of Active Directory are and then, see how you can reduce AD DS workloads through the implementation of proper management and administration tools.
  • Filesystem Hierarchy Standard

    Filesystem Hierarchy Standard

    Filesystem Hierarchy Standard LSB Workgroup, The Linux Foundation Filesystem Hierarchy Standard LSB Workgroup, The Linux Foundation Version 3.0 Publication date March 19, 2015 Copyright © 2015 The Linux Foundation Copyright © 1994-2004 Daniel Quinlan Copyright © 2001-2004 Paul 'Rusty' Russell Copyright © 2003-2004 Christopher Yeoh Abstract This standard consists of a set of requirements and guidelines for file and directory placement under UNIX-like operating systems. The guidelines are intended to support interoperability of applications, system administration tools, development tools, and scripts as well as greater uniformity of documentation for these systems. All trademarks and copyrights are owned by their owners, unless specifically noted otherwise. Use of a term in this document should not be regarded as affecting the validity of any trademark or service mark. Permission is granted to make and distribute verbatim copies of this standard provided the copyright and this permission notice are preserved on all copies. Permission is granted to copy and distribute modified versions of this standard under the conditions for verbatim copying, provided also that the title page is labeled as modified including a reference to the original standard, provided that information on retrieving the original standard is included, and provided that the entire resulting derived work is distributed under the terms of a permission notice identical to this one. Permission is granted to copy and distribute translations of this standard into another language, under the above conditions for modified versions, except that this permission notice may be stated in a translation approved by the copyright holder. Dedication This release is dedicated to the memory of Christopher Yeoh, a long-time friend and colleague, and one of the original editors of the FHS.
  • Oracle Solaris Security for Developers Guide • September 2010 Contents

    Oracle Solaris Security for Developers Guide • September 2010 Contents

    Oracle® Solaris Security for Developers Guide Part No: 816–4863–16 September 2010 Copyright © 2004, 2010, Oracle and/or its affiliates. All rights reserved. This software and related documentation are provided under a license agreement containing restrictions on use and disclosure and are protected by intellectual property laws. Except as expressly permitted in your license agreement or allowed by law, you may not use, copy, reproduce, translate, broadcast, modify, license, transmit, distribute, exhibit, perform, publish, or display any part, in any form, or by any means. Reverse engineering, disassembly, or decompilation of this software, unless required by law for interoperability, is prohibited. The information contained herein is subject to change without notice and is not warranted to be error-free. If you find any errors, please report them to us in writing. If this is software or related software documentation that is delivered to the U.S. Government or anyone licensing it on behalf of the U.S. Government, the following notice is applicable: U.S. GOVERNMENT RIGHTS Programs, software, databases, and related documentation and technical data delivered to U.S. Government customers are “commercial computer software” or “commercial technical data” pursuant to the applicable Federal Acquisition Regulation and agency-specific supplemental regulations. As such, the use, duplication, disclosure, modification, and adaptation shall be subject to the restrictions and license terms setforth in the applicable Government contract, and, to the extent applicable by the terms of the Government contract, the additional rights set forth in FAR 52.227-19, Commercial Computer Software License (December 2007). Oracle America, Inc., 500 Oracle Parkway, Redwood City, CA 94065.