Beruflich Dokumente
Kultur Dokumente
openssl
kernel
openssh client
openssh server
strongswan
libgcrypt
mozilla-nss
FSTEC
Federal Service for Technic and Export Control is responsible for information
security and protection of Russian technology. SUSE Linux Enterprise Server 11
SP3 is FSTEC certified (POCC RU.0001.0100).
System Hardening
Security Features
SUSE Linux Enterprise Server support for UEFI Secure Boot secures the boot
process by preventing the loading of drivers or OS loaders that are not signed
with an acceptable digital signature. See the details here.
OpenSCAP
OpenSCAP tools and libraries have been added in SUSE Linux Enterprise Server
since SUSE Linux Enterprise Server 11 Service Pack 2. OpenSCAP is a set of open
source libraries providing a path for integration of SCAP (Security Content
Automation Protocol). SCAP is a collection of standards managed by NIST with the
goal of providing a standard language for the expression of Computer Network
Defense-related information. For more information about SCAP,
see http://scap.nist.gov.
Firewall
SUSE Linux products come with a packet-filter which is enabled by default and
can be configured with YaST2 or from the command line to adjust to the needs of
a specific deployment.
Audit Subsystem
Filesystem Encryption
Data at rest should be encrypted when it is "confidential," especially when it is
stored on mobile devices and external storage devices. SUSE Linux Enterprise
supports full disk encryption as well as encrypted containers and partitions.
Security Updates
Software will never be free from flaws. SUSE Linux offers online security and
non-security updates that keep your systems secure during their lifetime.
The security features mentioned above have met PCI DSS requirements for
operating systems and will help you in creating an IT environment with SUSE
Linux that is PCI DSS-compliant.
Process Hardening
We build many of our software packages with extra security measures that
protect the running process against many exploitation techniques involving
memory flaws.
AppArmor
This security framework protects your Linux OS and applications from external
and internal threats and zero-day attacks. AppArmor comes with default
policies for quick deployment so you can secure mission-critical applications
quickly. Security profiles completely define what system resources individual
programs can access and with what privileges. AppArmor also includes learningbased tools and advanced statistical analytics that simplify the development of
customized policies, even for the most complex applications. Additionally,
changing security policies with AppArmor is dynamic, eliminating the need to
reboot the system.
Security-Enhanced Linux
(SELinux)
Mayor
disponibilidad
de
servicios
Los sistemas SAP modernos que ejecutan cargas de trabajo crticas
deben cumplir con los ms altos estndares de disponibilidad para sus
servicios SAP. SUSE Linux Enterprise Server para aplicaciones SAP est
diseado para maximizar la disponibilidad de servicios de las bases de
datos SAP HANA y las aplicaciones de misin crtica de SAP. La
reversin completa del sistema reduce el tiempo de inactividad
resultante de problemas de aplicacin inesperados despus de una
actualizacin. Al agregar la extensin SUSE Linux Enterprise Live
Patching, el kernel de Linux puede actualizarse sin tiempo de
inactividad para las aplicaciones SAP.
Disminuir
el
tiempo
de
implementacin
Reduzca el tiempo de implementacin de SAP de das a horas con el
asistente de instalacin de SUSE. El asistente de instalacin de SUSE
Linux Enterprise Server para aplicaciones SAP instala las soluciones de
software de SAP y sus infraestructuras Linux subyacentes. Este
proceso integra y simplifica sin problemas la instalacin de
aplicaciones SAP.
https://josejuandom.wordpress.com/2012/08/03/sistemas-operativos-suselinux/
https://www.suse.com/support/security/certifications