device hardening

 the methods used to eradicate means of attack, this can be:

  • Disabling unused network ports
  • strict password management
  • using multi-FA
  • updating computer systems to patch out bugs
  • removing non essential programs
  • setting time limits
  • staff training 
  • rotating generated passwords

Network hardening best practices

  • Ensure your firewall is properly configured and that all rules are regularly audited and updated as needed
  • Secure remote access points and remote users
  • Block any unnecessary network ports
  • Disable and remove unused or extraneous protocols and services
  • Encrypt network traffic

Server hardening best practices

  • All servers should be established in a secure data center
  • Harden servers before connecting them to the internet or external networks
  • Avoid installing unnecessary software on a server
  • Compartmentalize servers with security in mind
  • Use the principle of least privilege when setting up superuser and administrative roles

Application hardening best practices

  • Remove unnecessary components or functions
  • Restrict access to applications based on user roles and context
  • Remove or reset default passwords
  • Audit software integrations and remove unnecessary integrations or privileges

Database hardening best practices

  • Use access control and permissions to limit what users can do in a database
  • Remove unused accounts
  • Turn on node checking for user verification
  • Encrypt data in transit and at rest
  • Enforce secure passwords

Operating system hardening best practices

  • Use a patch management tool to apply OS updates and patches automatically
  • Remove unnecessary drivers, software, and services
  • Encrypt local storage
  • Limit registry and other systems permissions
  • Log appropriate activity, errors, and warnings

source: NinjaOne

Comments

Post a Comment

Popular posts from this blog

ESP overview

  task number  focus  No. Of hours  Marks allocated  1  Trouble shooting and test planning  2 hours 30  22  2  Interview and communication  2 hours 10  12  3  Project proposal  4 hours  24  4  Post project review  3 hours 30  12    Task uno:  This focus on trouble shooting a fault based on a specified problems/issues and designing a test plan.   The troubleshooting document should include:  User details   Test dates  Computer specs and software  Proposed tests and expected outcomes   Record of diagnosis  The test plan should include:  Administrative details E.G. dates names.  Test dates   Hardwear specs and software   Actual and relevant tests carried out in a logical order including images/diagrams  Full and complete details of expected outcomes  Remedial action required   Task d...
Read more

Stakeholder roadmap

 A stakeholder roadmaps provides an overview of the main components of the project, it will include objectives, deliverables, milestones, resources, and timelines, and is used to show these to stakeholders as well as keeping stakeholders in the know of operations. unlike a project plan, it does not include day to day tasks or a detailed view of roles, only a quick overview to catch stakeholder interest Project timelines timelines show what phases of the project are complete, current, and to do they are used to keep track of different project tasks they include: start and end date of tasks the task duration who is assigned the task task dependencies (if it relies on another task being complete) they are important as they: a central area to display all tasks and project management phases provide a simple representation of the project to make it easier to understand allow team members to focus on important tasks help promote improved time and resource management  Linking pro...
Read more

hw 12/5

Test yourself 241  A botnet aims to take control of digital systems. It is a type of malware that allows a cyber security attacker to take control of someone's system without their knowledge.   The aim of a DOS attack is to make a network inaccessible to users. It does this by flooding the network with traffic which in turn slows its speeds down to a point where it is basically unusable.  One of the main differences between a DOS attack and a DDOS attack is a DDOS attack tends to use multiple devices to try and infiltrate a network. The types of networks that are usually under threat from these would be ones like websites, banks, and payment websites.   Some of the main websites that are targeted by DDOS attacks would be ones like banks and payment websites.   Test yourself 242 One way of trying to find a password is using a dictionary software. This goes through some of the most common passwords and trying them when trying to get access to the account....
Read more