Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
hardening_enterprise_filefabric [2019_01_23 14:19] – kamran | hardening-enterprise-filefabric [2024_02_28 01:03] (current) – external edit 127.0.0.1 | ||
---|---|---|---|
Line 1: | Line 1: | ||
- | ====== Hardening | + | ====== Hardening |
Line 44: | Line 44: | ||
</ | </ | ||
- | ===== SSH Settings | + | ===== SSH Settings |
- | This is only required for EFF instances that were initially deployed | + | This is only required for NAA instances that were initially deployed |
As the root user edit the following file with the vi or nano editors: | As the root user edit the following file with the vi or nano editors: | ||
Line 75: | Line 74: | ||
===== Disable CloudFTP ===== | ===== Disable CloudFTP ===== | ||
- | EFF provides legacy protocol adaptors i.e you can access any storage using FTP, FTPS and SFTP. | + | NAA provides legacy protocol adaptors i.e you can access any storage using FTP, FTPS and SFTP. |
FTP provider is unencrypted protocol. Disable FTP, FTPS and SFTP service depending on your security policy. | FTP provider is unencrypted protocol. Disable FTP, FTPS and SFTP service depending on your security policy. | ||
- | For compatibility SFTP and FTPS support a wide range of encryption protocols and ciphers. For a locked down EFF deployment we recommend disabling CloudFTP service | + | For compatibility SFTP and FTPS support a wide range of encryption protocols and ciphers. For a locked down NAA deployment we recommend disabling CloudFTP service |
As root | As root | ||
Line 85: | Line 84: | ||
</ | </ | ||
- | ===== Remove Apache HTTPD server Configuration | + | ===== Remove Apache HTTPD server Configuration |
The icons directory is listed , this is not a security risk but some scanning tools can mark it as security risk. | The icons directory is listed , this is not a security risk but some scanning tools can mark it as security risk. | ||