At the perimeter router, there
should be a login banner and it should:
•
Specify
what is “proper use”of the system
•
Specify
that the system is being monitored
•
Specify
that privacy should not be expected when using this system
•
Do not
use the word “welcome”
•
Have legal
department review the content of the message
Also use good password
practices such as:
•
Avoid
dictionary words, names, phone numbers, and dates.
•
Include at least one lowercase letter,
uppercase letter, digit, and special character.
•
Make all passwords at least eight characters
long.
•
Avoid more than four digits or same-case
letters in a row.
•
Change
passwords often.
Services that are not in
used should be turned off or removed as each service may have their security
vulnerabilities and by having them turn on, you are exposing yourself to more
security risks.
When possible, the
following practices are advised:
•
Encrypt
Syslog traffic within an IPSec tunnel.
•
When
allowing Syslog access from devices on the outside of a firewall, implement RFC
2827 filtering (Network Ingress Filtering: Defeating DoS Attacks) at the perimeter
router.
•
ACLs
should also be implemented on the firewall in order to allow Syslog data from
only the managed devices themselves to reach the management hosts.
No comments:
Post a Comment