has anybody done baseline of your solaris box's processes??
something like, take a snapshot of the processes running on your box,
they are legitimate, save a copy of the snapshot and do a script to
the processes against this snapshot periodically? If there are new
processes then alert the administrator
If you have please tell me is it worth it because i would think there
is much more to it ( some difficulties u have faced?? )than the steps