Virus, Trojan, Worm, etc.
Name: Mathew Musgrave
Best Practices Submission: The eeprom password should be set on all Solaris
systems. On a system that does not an eeprom password set, a cracker can gain
access to the root account and set the eeprom password himself. If he sets the
eeprom to full inter-active mode and reboots the system, the unit will not boot
without the eeprom password. If this happens, the eeprom chip must be physically
replaced. Estimates I have seen place replace times at 2 to 4 weeks. That's 2 to
4 weeks you Solaris machine will be down, if you do not set an eeprom password.