- Network Parameters
- Critical OpenBoot PROM Configuration Parameters
- Time and Date
- Host Watchdog, Rocker Switch, and Secure Mode Settings
- Password Management
- Firmware Upgrades
- Error Logging
- Error Analysis
- LED Status and Alarms
- Environment Monitoring and Control
- Console Navigation
- Power Failure and Recovery Behavior
- Precautions for Using the SCC
- System Controller Configuration Backups
- Power Connections for Redundancy and Grounding
- Rackmounting and Improving Serviceability
- About the Author
- Ordering Sun Documents
- Accessing Sun Documentation Online
It is strongly recommended that the SC be placed on a private network if you want to use the Ethernet port. The SC uses nonencrypted transport mechanisms, such as HTTP, FTP, and Telnet. Placing it on a general purpose intranet puts the SC at risk for network-based attacks, such as denial-of-service (DoS), session sniffing, and/or hijacking.
If you are going to use a terminal server, use one that supports Secure Shell (SSH) for encrypted sessions. This recommendation recognizes that the terminal server is generally not on the private SC network, but on the general purpose intranet. If Telnet is used to access the terminal server, then all passwords are passed over the general purpose network in clear text.
The only restrictions for the password are the character set supported by ASCII and the terminal emulator in use. A minimum password length of 16 characters is recommended to promote the use of passphrases instead of passwords. Passwords should be comprised of at least lowercase, uppercase, numeric, and punctuation marks. Use the password command at the lom> prompt to change the password, as in the following example:
lom> password Enter current password: password Enter new password: password Enter new password again: password
Sun Service personnel can reset the password by using a dynamically generated service password.