SunScreen EFS Release 3.0 Installation Guide

Security Issues

The machines that are used as gateways, or that are in vulnerable positions on the network, should have only the minimum Solaris packages installed as designated. This way, fewer potentially exploitable applications are allowed.

If no Solaris applications or services are needed on a SunScreen machine, consider installing the software in stealth mode with the hardened OS feature. This is discussed in Chapter 5.