Đang chuẩn bị liên kết để tải về tài liệu:
Management Access

Không đóng trình duyệt đến khi xuất hiện nút TẢI XUỐNG Tải xuống

Management Access Control of access to the management interface of network infrastructure devices is critical. Network devices such as routers, switches, intrusion detection sensors | Management Access Control of access to the management interface of network infrastructure devices is critical. Network devices such as routers switches intrusion detection sensors and firewalls should be accessed only by those users who need to administer them. This requirement stems from the fact that an unauthorized user whether someone with malicious intent or not may change the configuration or disable the device and thus lower the security of the surrounding network. Management access comes in two forms in-band and out-of-band. Additional considerations must be made regarding how the firewall is accessed Telnet SSH SNMP FTP TFTP HTTP HTTPS or some proprietary management protocol and must conform to the management access policy as discussed in Chapter 10 Firewall Security Policies. In-Band Management In-band management refers to the administrative access to systems and network devices over the same network that is used by the traffic being filtered. In-band management can represent a significant risk to the administrator if certain precautions are not taken. These risks center predominantly around the use of unencrypted communications channels. Specific attention must be paid to the use of encrypted communications such as SSH and HTTPS when considering whether to manage a firewall in-band. The use of simple Telnet or HTTP can result in the administrative password being captured by an attacker who is sniffing the traffic between the administrative interface of the firewall and the rest of the network. In-band management also runs the risk of being susceptible to a denial-of-service DoS attack during large-scale outbreaks such as worms. This would make it more difficult to reconfigure the firewall during such an event to block traffic or shut it off altogether if necessary to defeat the attack. Out-of-Band Management As the term indicates out-of-band management results in access to the firewall through a secondary channel that is not carrying production traffic.