Hardening

Question 1

Hardening Basics

Answer 1

With the credentials always change default credentials, do patch management, always protect administrative accounts

Question 2

Hardening Firmware

Answer 2

UEFI vs. MBR: UEFI is a more protected system and has more setting to keep it protected. Always do firmware updates and patches. Only trust platform modules meaning only trust certificate that are known which is also secure boot. Protection of out of band management when you remote into the server to update your server.

Question 3

Hardening Ports and services

Answer 3

Ports are logical end-point connection and can be used by attacker. Services provide networking resources and provide a increased attack surface also can be exploited by attackers

Question 4

Hardening a firewall

Answer 4

In the context of hardening a host firewall you should always activate implicit deny. Only allow services that are trusted and being used at the time. Use HIDS and HIPS in the firewall. Stateful monitoring or a stateful firewall moniting network communications

Question 5

Hardening Anti-virus

Answer 5

Real time protection and automated scanning, do platform and signature updates. Keep logs of all activity, and configure default actions

Question 6

hardening file and disk encryption

Answer 6

File encryption methods are EFS, APFS, GPG. Disk encryption methods Bitlocker (widnows), file vault(Maco os), Luks (linux)

Question 7

Hardening the registry

Answer 7

It is a windows only application with hierarchical setting/s/configuration database. Least privilege all users