 |
 |
|
|
|
|
|
|
|
|
|
|
|
|
|
 |
|
|
Step 2: Disable unneeded TCP/UDP services
Once you have set up your network policy baseline and determined the role of every system on your network, you need to disable unneed TCP/UDP services on every system.
|
|
|
Many operating systems today come with a web server, and the user might not even know their system is running a web server. The web server may not be vulnerable today. But a new vulnerability may be found tomorrow.
The NETFOX makes it easy to determine which machines have non policy allowed active TCP/UDP services. The NETFOX WHAT scan will inform you of any illegal services on any system. The NETFOX allows you to specifically state your organization's policy concerning a particular service. The NETFOX Configuration Administrator can edit and create new policies regarding each TCP and UDP port. The NETFOX does come with several default policies associated with all TCP/UDP ports and tells your how to disable TCP/UDP services for both Microsoft and UNIX machines.
The NETFOX not only tells you how to disable TCP/UDP services, but will inform all NETFOX users on policy compliance requirements through the web browser. The NETFOX WHAT scan can quickly determine if a networked system is in compliance to the policy baseline. If a system is determined to be non-compliant you can identify the system's point of contact via the IP Profile feature. Now you can inform the system's owner that they are out of compliance and tell them to run a NETFOX User self-scan to determine the steps needed to gain compliance. They can then access the instructions for disabling services (or whatever your policy states) from their machine. Thus saving you time, educating your user base, and thwarting a potential security breach.
|
|
|
|
|
|
|
