Abstract
This chapter presents an overview of the Nokia IPSO. All Nokia IP series enterprise appliances are based on the IPSO operating system, which was developed from a branch of the FreeBSD operating system, itself based on 4.4BSD UNIX. This basis makes for a very stable networking and routing platform. Given that most Nokia appliances are sold primarily as firewalls, Nokia made a substantial effort to harden IPSO and make it a more secure platform for firewall use. Some of the things Nokia did include shutting off unnecessary services, restricting system configuration and user accounts, logging system access, and removing development tools and libraries. The IPSO admin user is the equivalent of the UNIX root user in terms of privilege and is the only user enabled by default in a new IPSO installation. A monitor user can be enabled to allow read-only access to the Nokia IP Appliance, and it is possible to add other privileged and unprivileged users after installation. New unprivileged users must be added. The IPSO file system is logically just like any other UNIX file system, but it features some changes that increase security. The IPSO root partition is mounted read-only, and changes to system settings and mount points are all logged using the syslog facility.
Sign-in/Register to access full text options 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
