7.13 Set EEPROM security-mode and log failed access, Note: This check is not applicable to Solaris 9 systems running on x86 platform.

Information

After entering:'eeprom security-mode=command', the administrator will be prompted for a password. This password will be required to authorize any future command issued at boot-level on the system (the .ok. or .>. prompt) except for the normal multi-user boot command (i.e., the system will be able to reboot unattended). This helps prevent attackers with physical access to the system console from booting off some external device (such as a CD-ROM or floppy) and subverting the security of the system.

See Also

https://workbench.cisecurity.org/files/633