B

backing up the Kerberos database, ()

backslash (\), device_allocate file, ()

backup

Kerberos database, ()

slave KDCs, ()

Basic Solaris User rights profile

description, (), ()

Batchmode keyword, ssh_config file, ()

binding control flag, PAM, ()

blowfish-cbc encryption algorithm, ssh_config file, ()

blowfish encryption algorithm

policy.conf file, ()

ssh_config file, ()

Bourne shell

ASET working directory specification, ()

privileged version, ()

bsmconv script, devicemaps file creation, ()

bsmrecord command

display audit record formats, ()

example, (), ()

C

-c option, auditreduce command, ()

C shell

ASET working directory specification, ()

privileged version, ()

cache, credential, ()

caret (^) in audit flag prefixes, ()

CD-ROM drives

device-clean scripts, (), ()

cd subcommand, sftp command, ()

changepw principal, ()

changing

(command line) user properties, ()

rights profiles (command line), ()

role properties (command line), ()

your password with kpasswd, ()

your password with passwd, ()

CheckHostIP keyword, ssh_config file, ()

chgrp command

description, ()

syntax, ()

chgrp subcommand, sftp command, ()

chkey command, (), ()

chmod command

changing special permissions, (), ()

description, ()

syntax, ()

chmod subcommand, sftp command, ()

choosing, your password, ()

chown command

description, ()

syntax, ()

Cipher keyword, ssh_config file, ()

Ciphers keyword

ssh_config file, ()

sshd_config file, ()

cklist.rpt file

description, (), ()

CKLISTPATH_level variable (ASET), setting the directories to be checked, ()

cl audit flag, ()

class

description, (), ()

classes, flags and definitions, ()

cleaning, not_terminated files, ()

client

AUTH_DH client-server session, (), ()

definition in SEAM, ()

client names, planning for in SEAM, ()

clients (SEAM), configuring, ()

clock skew

SEAM and, (), ()

clock synchronizing

SEAM and, (), (), ()

cnt audit policy, description, ()

combining audit files, ()

auditreduce command, (), ()

command-line equivalents of SEAM Administration Tool, ()

commands

device-allocation commands, ()

table of SEAM, ()

comments

device_allocate file, ()

device_maps file, ()

common key

calculation, ()

DH authentication and, ()

Compression keyword, ssh_config file, ()

CompressionLevel keyword, ssh_config file, ()

Computer Emergency Response Team/Coordination Center (CERT/CC), (), ()

computer security, See system security

configuration decisions

SEAM

client and service principal names, ()

clock synchronization, ()

database propagation, ()

mapping hostnames onto realms, ()

number of realms, ()

ports, ()

realm hierarchy, ()

realm names, ()

realms, ()

slave KDCs, ()

configuration file

audit_control file, (), (), (), ()

audit_startup script for audit policy, ()

PAM, (), ()

password encryption algorithm, ()

policy.conf file, ()

configuring

ASET, (), ()

audit trail overflow prevention, ()

auditconfig command, ()

RBAC

task map, ()

SEAM

adding administration principals, ()

clients, ()

cross-realm authentication, ()

master KDC server, ()

NFS servers, ()

overview, ()

slave KDC server, ()

task map, ()

Secure Shell, ()

ConnectionAttempts keyword, ssh_config file, ()

console

displaying su command use on, ()

root access restriction to, ()

context-sensitive help, ()

control flags, PAM, ()

controlling, system usage, ()

conversation key

decrypting, ()

generating, ()

converting

audit records to readable format, (), (), ()

copying audit messages to single file, ()

cost control, auditing and, ()

creating

credential table, ()

/etc/d_passwd file, ()

keytab file, ()

new policy, ()

new policy (SEAM), ()

new principal (SEAM), ()

Secure Shell keys, ()

stash file, ()

tickets with kinit, ()

creating the audit trail, ()

audit daemon's role, ()

audit_data file, ()

auditd daemon, ()

overview, ()

cred database, (), ()

DH authentication and, ()

cred table

information stored by server, (), ()

credential

cache, ()

description, (), ()

obtaining for a server, ()

obtaining for a TGS, ()

or tickets, ()

credential cache, ()

credential table, adding single entry to, ()

cron command, backing up using, ()

cron service name, PAM, ()

crontab files, authorizations required, ()

crontab files

running ASET periodically, ()

stop running ASET periodically, ()

cross-realm authentication, configuring, ()

crypt command, file security, ()

crypt_sunmd5 encryption algorithm, ()

csh command

dial-up passwords, ()

privileged version, ()

.cshrc file, path variable entry, ()