Oracle Solaris 11.3 Security and Hardening Guidelines

This document provides comprehensive guidelines for securing and hardening Oracle Solaris 11.3 systems. It covers a wide range of security topics, including system installation and initial configuration, user management and access control, network security, data protection, application security, and system maintenance and monitoring. The document emphasizes the importance of a layered security approach, employing features like least privilege, role-based access control, firewalls, encryption, and secure coding practices. It also details specific Oracle Solaris features such as Zones, Trusted Extensions, IPsec, Kerberos, and the Service Management Facility (SMF) for enhancing security. Additionally, the guide addresses security standards and certifications, site security policies, and best practices for physical and personnel security.