root account locking after installation
By default the password for the root user is expired instead of a locked account or similar. A regular 'su -' will show a password changing prompt, allowing anyone to set a root password without previous authentication (eg. if a machine is left unattended and unlocked).
Instead the account should be locked or, if not possible due to scripts requiring this state, have a random password (like in Ubuntu), requiring user authentication prior to changing the password.
|duplicates OpenIndiana Distribution - Bug #636: Fix graphical installer to prevent root password expiring||Closed||2011-01-16|
Updated by Olivier Pinard over 3 years ago
It can help you. Just have to test or have luck.