|
The main goal of most system vendors today is to deliver maximum features and flexibility to their customers. An unfortunate side effect of this policy is the large number of unnecessary services and tools installed and enabled by default on "out-of-the-box" OS installations. In addition, more often than not services are enabled with weak security settings.
One of the central IT security rules maintains that the more services you have enabled on your network, the more vulnerable it becomes. This makes the securing and hardening of the individual hosts an important task of every security-conscious system administrator. The essential concept of in-depth defense is largely dependent on secure and well-maintained hosts within the organizational IT infrastructure. Surprisingly, this task is often overlooked or ignored by organizations of every size, including large enterprises. This leads to the dangerous situation of an attacker from within the organizational security perimeter (an insider), or someone who manages to penetrate the security measures on the network border, easily penetrating and exploiting hosts within the internal network.
Host hardening begins with an evaluation of business requirements for each individual host. Host security is increased through several actions, such as:
Codeangels Solutions can help its customers harden their hosts with the following operating systems:
|
