ABSTRACT
Additionally, security parameters are an important measure of control for system components. For instance, in the case of the network components, which are governed with Simple Network Management Protocol (SNMP),† if the public and private SNMP strings are not changed from the defaults-being “public” and “private” or any other vendor-supplied default SNMP string-the attacker is able to glean useful information about the network device, thereby being able to launch more-sophisticated attacks against the system to effect a compromise. In the previous chapter, we discussed hardening and configuration standards for network devices. It is equally if not more important for organizations to harden their servers and workstations to ensure that attackers are not able to easily enumerate the system, identify vulnerabilities, and attack the system.
