sunflash-Distributed to mailing list sunflash@suntri sunflash-Send requests and problem reports to owner-sunflash@suntri.east.sun.com ---------------------------------------------------------------------------- The Florida SunFlash April 1993 Sun Technical Bulletin SunFLASH Vol 53 #19 May 1993 ---------------------------------------------------------------------------- This article describes the contents of the Sun Technical Bulletin (STB) for April, 1993. It is posted to SunFlash to make those customers who have a support contract aware that they should be receiving this execellent publication. Copies of the STB are sent to the people listed in your support contract. They have limited duplication rights (see notice included each month within the STB). Two sample STBs, in PostScript, are in solar.nova.edu:/pub/sunflash/1992 and in ftp.uu.net:systems/sun/sunflash/1992 185,395 stbaug92.ps.Z 171,958 stbjul92.ps.Z Each is about 100 pages. This article contains two parts: o Table Of Contents for March 1992 o STB Editor's Introduction The text and PostScript STBs are also included in the SunSolve CD ROM service (see sunflash 44.07 "SunSolve and Sun HelpDesk"). Note that second editions of SunSolve and Sun HelpDesk have begun shipping. You should install at least SunSolve - it's totally rad, dude! -johnj ------------------------------------------------------------------------------- Year: 1993 Month: April Title: STB Editor's Introduction ------------------------------------------------------------------------------- STB Overview ------------ This month's STB contains articles of general interest in the topics outlined below. ** Security This month, we cover the newly released Solaris CMW 1.0 secure operating system for Compartmented Mode Workstations, with two lengthy reprints from the official documentation. "Solaris CMW 1.0 Release Report" is an edited reprint of the offical technical white paper describing the CMW operating system in detail. The report describes how CMW 1.0 differs from the base Solaris 1.0; discusses some security concepts, such as the Trusted Computing Base, distributed systems, security evaluation and certification; defines and describes Trusted Facility Management, mandatory and discretionary access control, labels, etc.; and other features and benefits of the CMW product. "Secure Software" is an edited reprint of an Appendix from the Sun CMW System Configuration Guide. The appendix describes basic security vocabulary and history, including the origins of the Orange Book and the meanings of security levels as defined in the Orange Book, including B1 and CMW. ** Network This month's articles both address the difficult subject of converting a network's name service to NIS+. There is no clear-cut, definitive checklist of tasks to accomplish this transition, since the required steps are so dependent on site-specific details. "NIS+: Planning for Setup" is a reprint of a chapter from the SunSoft Press book "All About Administering NIS+" by Rick Ramsey, available in retail bookstores worldwide. The chapter provides information to help you plan the setup and administration of your NIS+ service. It begins by recommending a setup procedure that works for most namespaces. Based on the steps of that procedure, it points out the decisions you need to make and the information you need to gather before you begin to set up NIS+. Details of the actual setup procedure will be found in the full book. "NIS+ Transition Planning" is another in our occasional series of instructional articles assembled from Sun internal training materials. This article tackles the daunting task of describing everything a network administrator might have to do at any site to convert from NIS to NIS+. The reader is assumed to have a basic understanding of NIS and NIS+ concepts, and some familiarity with the NIS+ commands in the Solaris 2.x releases. Material in this article should enable the reader to understand the factors that influence the planning of conversions for network name service; follow a checklist to prepare a conversion plan; and prepare a Table Planning Worksheet to create site-specific name service maps. ** Graphics "XIL Imaging Library" describes SunSoft's new XIL product, the industry's first foundation imaging library with open software, hardware, and interface specifications. The library defines how imaging and video functions, such as display, manipulation, compression, and decompression, are carried out; it also specifies the interface between XIL and hardware. XIL strengthens SunSoft's strategy to encourage OEMs and thrird-party graphics vendors to develop through open hardware and software interfaces. ------------------------------------------------------------------------------- Year: 1993 Month: April Title: Contents ------------------------------------------------------------------------------- Contents -------- 1. STB Editor's Introduction 1-1 STB Overview 1-1 2. Security 2-1 Solaris CMW 1.0 Release Report 2-1 Background Information 2-2 Release Summary 2-3 What Is a Trusted System? 2-3 What Is a TCB? 2-4 What Is a Distributed System? 2-6 Safely Extending the Configuration 2-9 Trusted Facility Management 2-11 Security Concepts 2-14 Features and Benefits 2-22 Installation and Configuration Differences 2-30 Other Major Differences 2-31 Functionality Not Supported 2-33 Evaluation Summary 2-34 Secure Software 2-36 Trusted Computing Overview 2-36 Security Terms 2-37 What is a Trusted System? 2-37 Compartmented Mode Workstation 2-41 Other Security Considerations 2-43 3. Network 3-1 NIS+: Planning for Setup 3-1 Recommended Setup Procedure 3-2 Planning Guidelines 3-2 Sketching a Domain Hierarchy 3-4 Selecting Servers for the Namespace 3-6 Determining Credential Needs of the Namespace 3-9 How Many Administrative Groups? 3-10 Determining Access Rights to the Namespace 3-12 Where Can I Get Information About the Namespace? 3-14 Summary Table 3-14 Transition Guidelines 3-16 NIS+ Transition Planning 3-19 Introduction 3-19 Prerequisites 3-19 Other References 3-19 Planning Checklist 3-20 Decisions 3-21 Planning Tasks 3-21 Conversion Tasks 3-35 Frequently Asked Questions and Answers 3-38 Table Planning Worksheet 3-42 4. Graphics 4-1 XIL Imaging Library 4-1 Product Highlights 4-2 Technical Features 4-3 Coding Example 4-5 5. Software Release Versions 5-1 Current Sun Software Products and Release Versions 5-1 Operating Systems 5-1 Window Systems & Desktop Utilities 5-1 System Management - High-Availability 5-2 System Management - Security 5-2 System Management - Network Management 5-2 System Management - Performance 5-2 Graphics Software 5-2 Software Development 5-3 Other Products 5-3 Connectivity Products 5-4 Updated Sun Operating System Support Matrix 5-5 6. Notes & Comments 6-1 World Hotlines 6-1 Reporting Bugs 6-3 Submitting Software Bugs: United States and Canada 6-3 Submitting Software Bugs: Europe 6-4 Submitting Software Bugs: Intercon 6-8 Your STB Subscription 6-10 Index ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ For information send mail to info-sunflash@Sun.COM. Subscription requests should be sent to sunflash-request@Sun.COM. Archives are on solar.nova.edu, ftp.uu.net, sunsite.unc.edu, src.doc.ic.ac.uk and ftp.adelaide.edu.au All prices, availability, and other statements relating to Sun or third party products are valid in the U.S. only. Please contact your local Sales Representative for details of pricing and product availability in your region. Descriptions of, or references to products or publications within SunFlash does not imply an endorsement of that product or publication by Sun Microsystems. Send brief articles (e.g. third party announcements) and include contact information (non-800#, fax #, email, etc) to: John McLaughlin, SunFlash editor, flash@Sun.COM. +1 305 351 4909