Intuitive Japanese Calligraphic Ideogram Intuitive Systems: Leadership for the 21st Century: online strategies and communications

The Business Blog at Intuitive.com

Dave Taylor
Dave Taylor has been involved with the Internet since 1980 and is widely recognized as an expert on both technical and business issues. He has been published over a thousand times, launched four Internet-related startup companies, has written twenty business and technical books and holds both an MBA and MS Ed. Dave maintains four weblogs: The Business Blog at Intuitive.com, Ask Dave Taylor, Dave On Film, and Attachment Parenting Blog. Dave is an award-winning speaker, sought after conference and workshop participant and frequent guest on radio and podcast programs.

Hurray! Done writing the Solaris book!

An update for people keeping track of my current writing projects: I turned in the final chapter of Solaris for Dummies this morning! A definite weight off my shoulders, and this also means that I've written two totally dissimilar books in the same three month period. Ug. Never again!

I have to say that as I dug more into the administrative side of Solaris 9 for the last few chapters, I am aghast at some of the basic mistakes they have made in security and default configurations, not to mention how they've written some security utilities...

I think the one that most surprised me [warning, geeky content] was that I can add a line like:

hack::0:0: hacktheplanet :/:
to the /etc/passwd file, and the password file checking utilities don't see it!. Try it yourself if you have a Solaris box. Add the line, then run pwck which ignores it (properly) and passwd -sa which simply stops scanning the password file when it sees the line that doesn't match. That's not just bad coding (c'mon, it should output an error message!) but it's dangerous because a utility that ostensibly summarizes the conten of the password file doesn't actually work as expected, allowing sysadmins to blindly leave backdoors in their password files. Not good.

The other thing that bugs me about the default Solaris 9 configuration is that they use inetd and that, by default, just about every service ever written for a Unix box is enabled. That's completely brain-dead in my opinion. What's the logic of enabling finger, for example, then in the comments within the config file saying "Finger should be disabled for security reasons."? Just disable it and comment that "before reenabling finger, realize that it's a significant security risk."

In this sense, I think that Apple's Mac OS X and the Linux community are far ahead of the game here; they disable just about everything by default, and allow the admin to enable specific services they desire for their system and network.

Sun, it's time to catch up with the rest of the Unix / Linux community. These are rough edges on an operating system (Solaris) that should have long-ago become the showpiece of the entire Unix community. After all, there are more Unix inventors at Sun than any other company I can think of...

This commentary is not to say that the book "Solaris for Dummies" is full of rants and whinging. It's definitely not. In fact, if I may say so, once I figured out how to work around some of these annoying glitches, I quite enjoyed the Solaris experience and believe that the end-product will be quite readable, informative, and enjoyable too!

Posted by Dave Taylor at February 11, 2003 5:13 PM

Comments
There are no comments on this article yet.
Insider's Guide to Blogging
Before you leave a comment, a tip: If you're interested in blogging, you should sign up for my Blogsmart News so you can stay up to date on the latest insider tips and ideas for your Internet business and marketing efforts. Sign up right now and you'll get a free copy of my "Insider's Guide to Blogging" ebook too!
 
Post a comment




Because I value your thoughtful opinions, I encourage you to add a comment to this discussion. Don't be offended if I edit your comments for clarity or to keep out questionable matters, however, and I may even delete off-topic comments.
spacer
spacer
strategic management consulting @ intuitive systems
spacer
management consulting and communications leadership
spacer
communicate: writing
spacer
engage, learn: teaching
spacer
listen, think: speaking
spacer
visualize:photography
spacer
insight: The Blog life business weblog
spacer
contact dave taylor
spacer
spacer


m3 speaker medallion




Search Google
Intuitive.com
Subscription Options
XML
Add to My Yahoo!
Elsewhere in my Blogosphere
Ask Dave Taylor!
Review: iSSH for the iPad/iPhone
How do I prevent Yahoo Groups from spamming me?
How do I set up Google "call phone" in Gmail?
Verify/Confirm a forwarding email address in Gmail?
Can Google Maps figure out my current location?
Dave On Film
Review: Takers
Review: Scott Pilgrim vs. The World
Review: The Expendables
Review: The Other Guys
Review: Salt
Parenting Blog
Depersonalizing my house to sell it faster
Single Dad traveling with kids isn't so easy...
Can ex's successfully have joint vacations?
Should you allow your older child to crawl into your bed at night?
Stay up late? It's probably because you're so darn smart...
Latest Entries at
The Business Blog
Musical discovery in the digital age: Owl City -> The Postal Service
Win a signed copy of Jim Kukral's book "Attention"
HP and Apple demonstrate execs need to own up to their mistakes too
Sony prohibits Internet sales for its ES line
Recommended Facebook Privacy Settings: Everyone?
Sign up now for my week-long Web Marketing and Social Media workshop
Interview with the ultra-connected Vincent Wright
How to Create Great Presentation Slides
Job Interview: What ARE your strengths and weaknesses?
Experiences with Keynote and the iPad VGA connector: not so good
Kudos to Levi Strauss for its Goodwill campaign
Are guest blog entries "works for hire"?
How does a blogging business work?
A class of CU journalism seniors, and only one was blogging?
Pre-Ordering an Apple iPad: The Visual Tour
Subscribe to the Wall Street Journal online?
Braindead Affiliate Tax Lands, Amazon Cuts Me Off
Hey SkyMall: pay attention to customer feedback!
It's time for Foursquare (and Web 2.0) to grow up?
Going to CES next week? I'm co-hosting...
Lack of quality control on Facebook ads leads to...
What's the impact of social media on business growth?
Interview with PR expert Deirdre Breakenridge
My upcoming speaking gigs Oct, 2009
Worried about the FTC going after your blog?
Twitter "virus" via video, I don't think so!
Why DVD rental is such a tough biz: it's a commodity, stupid
Great presentations at the ESPRIT Innovation Alliance Breakfast
Webinars are great, but face-to-face meetings are better...
Join Me at The Social Media Briefing for Executives
Disney's Blu-Ray Movie Club: The Economics Don't Work
Learn about Twitter over breakfast this Friday!
Heading to Vegas? A list of the best buffets...
Why would you want to go "In Jodie's Brain"?
An interesting application for the $15k Microsoft Surface
Duplicate content? Complain to the hosting company
Should stores match their own Web site prices? How Target failed.
Eric Ries brings "Lean Startup" to Colorado
Interview with Luc Tremblay of Cirque du Soleil's KOOZA
Help rename Colorado's tech industry
Startup Seed Capital workshop, Monday 7/13
Introducing the Google Chrome Operating System
Mike Arrington doesn't understand PR at all...
Bad PR Pitch #7132: From Baskin Robbins?
For Sale: The "Firedog" Brand
Mainstream media wasn't asleep during the Iranian election!
The micro-land rush of Facebook Custom URLs
Car navigation system with TV tuner, from Mio. WTH??
Tropicana and the importance of consistent package design
Apple launches the PlayTV DVR and casual gaming console?
..
Blogwise | Blogdex | Blogarama | BlogPhiles | BlogStreet | BlogShares | << Colorado Blogs >> | Search4Blogs

RDF XML GeoURL Add to My Yahoo!
social media / blogging public speaker - colorado photography - film blog - business blog - free tech support
Drixoral
© 2010 by Dave Taylor and Intuitive Systems, Inc. All Rights Reserved.

Valid CSS!