The best way to harden Solaris is to use JASS, or as it's known now, Solaris Security Toolkit.
I've just recently gone through the exercise of hardening 8 Solaris 10 servers for a bank before the auditors came through. The good thing about Solaris Security Toolkit is that you can easily extend or modify the hardening steps and it comes with an auditing mode to ensure that your security configuration hasn't changed.
I've just recently gone through the exercise of hardening 8 Solaris 10 servers for a bank before the auditors came through. The good thing about Solaris Security Toolkit is that you can easily extend or modify the hardening steps and it comes with an auditing mode to ensure that your security configuration hasn't changed.
It's free and fully supported by Sun.
See http://www.sun.com/software/security/jass/