[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

250363

 
 

909

 
 

196124

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 30475 Download | Alert*

Windows includes support for Structured Exception Handling Overwrite Protection (SEHOP). We recommend enabling this feature to improve the security profile of the computer. The recommended state for this setting is: Enabled. Note: After you enable SEHOP, existing versions of Cygwin, Skype, and Armadillo-protected applications may not work correctly. Fix: (1) GPO:Computer Configuration\Policies\A ...

Specifies whether to require the use of a specific security layer to secure communications between clients and RD Session Host servers during Remote Desktop Protocol (RDP) connections. If you enable this setting, all communications between clients and RD Session Host servers during remote connections must use the security method specified in this setting. The following security methods are av ...

This setting is used by Credential Manager during Backup/Restore. No accounts should have this privilege, as it is only assigned to Winlogon. Users saved credentials might be compromised if this privilege is given to other entities. Countermeasure: Configure this user right so that no accounts have it. Potential Impact: None, this is the default configuration Fix: (1) GPO: Computer Con ...

This policy setting determines whether Redirection Guard is enabled for the print spooler. Redirection Guard can prevent file redirections from being used within the print spooler. The recommended state for this setting is: Enabled: Redirection Guard Enabled Fix: (1) GPO: Computer Configuration\Policies\Administrative Templates\Printers\Configure Redirection Guard (2) REG: HKEY_LOCAL_MACHINE\SOF ...

To properly set the permissions of '/etc/gshadow', run the command:

Description: The Apport Error Reporting Service automatically generates crash reports for debugging Rationale: Apport collects potentially sensitive data, such as core dumps, stack traces, and logfiles. They can contain passwords, credit card numbers, serial numbers, and other private material. Audit: Verify `Apport` is not installed:# dpkg -s Apport Remediation: Run the following command to remov ...

If any password hashes are stored in '/etc/passwd' (in the second field, instead of an 'x'), the cause of this misconfiguration should be investigated. The account should have its password reset and the hash should be properly stored, or the account should be deleted entirely.

Description: The pwquality difok option sets the number of characters in a password that must not be present in the old password.Rationale:Use of a complex password helps to increase the time and resources required to compromise the password. Password complexity, or strength, is a measure of the effectiveness of a password in resisting attempts at guessing and brute-force attacks.Password complexi ...

The pwquality dictcheck option sets whether to check for the words from the cracklib dictionary. Rationale: If the operating system allows the user to select passwords based on dictionary words, this increases the chances of password compromise by increasing the opportunity for successful guesses, and brute-force attacks. Audit: Run the following command to verify that the dictcheck option in /etc ...

The pwquality maxrepeat option sets the maximum number of allowed same consecutive characters in a new password. Rationale: Use of a complex password helps to increase the time and resources required to compromise the password. Password complexity, or strength, is a measure of the effectiveness of a password in resisting attempts at guessing and brute-force attacks. Password complexity is one fact ...


Pages:      Start    16    17    18    19    20    21    22    23    24    25    26    27    28    29    ..   3047

© SecPod Technologies