Initially Securing the System

Language:

The following tasks are best performed in order. At this point, the Oracle Solaris is installed and only the initial user who can assume the root role has access to the system.

Table 2-1 Securing the System Task Map

Task	Description	For Instructions
1. Verify the packages on the system.	Checks that the packages from the installation source are identical to the installed packages.	How to Verify Your Packages
2. Ensure that executables are protected.	Checks that ASLR is enabled.	How to Verify That ASLR Is Enabled
3. Safeguard the hardware settings on the system.	Protects hardware by requiring a password to change hardware settings. On an x86, access to the GRUB menu is controlled. On a SPARC, the `eeprom` command protects the hardware.	Controlling Access to System Hardware in Securing Systems and Attached Devices in Oracle Solaris 11.2
3. Disable unneeded services.	Prevents processes that are not part of the system's required functions from running.	How to Disable Unneeded Services
5. Prevent the workstation owner from powering down the system.	Prevents the Console User from shutting down or suspending the system.	How to Remove Power Management Capability From Users
6. Create a login warning message that reflects your site's security policy.	Notifies users before and after authentication that the system is monitored.	How to Place a Security Message in Banner Files How to Place a Security Message on the Desktop Login Screen