Information
Solaris supports several different algorithms for password storage, including unix crypt, SHA256 and SHA512. The CRYPT_DEFAULT determines the default encryption algorithm used, while CRYPT_ALGORITHMS_ALLOW determines algorithms allowed by the system for new passwords.
By default Solaris uses the old unix crypt algorithm for password storage. Unix crypt is easy to crack with readily available tools. Using a more advanced algorithm decreases the capability of cracking passwords on the system.
Solution
Edit the /etc/security/policy.conf file and set the CRYPT_DEFAULT setting as follows: CRYPT_DEFAULT=6