Appropriate logging enabled with proper time information.
Device's time of day set accurately, maintained with NTP.
Summary
The chapter focused on the essentials of securing device and management access. Security implementation is
not possible without a policy, and correspondingly, device hardening is not possible without a device security
policy. The chapter begins with a brief overview of a device security policy followed by key factors in device
security, such as access methods, access control, device hardening, and identifying unneeded services. The
chapter then concentrates on a discussion of various system management security features specifically available
on security appliances, such as Cisco PIX 500 and ASA 5500 Series Adaptive Security Appliances, VPN3000
Concentrator, and IPS 4200 series appliance sensors. The chapter ends with a device security checklist that is
developed as a summary.
References
http://www.nsa.gov/snac/
http://www.ntp.org/ntpfaq/NTP-s-def.htm
http://www.cisco.com/en/US/tech/tk648/tk361/technologies_tech_note09186a0080120f48.shtml
http://www.cisco.com/en/US/products/ps6350/products_configuration_guide_chapter09186a008044036d.html
http://www.cisco.
Pages:
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162