3.5.3 Application Hardening
(Page 1 of 2)
Application hardening is the process of securing applications in use on a network. It can be a major issue simply because there are so many different applications in use on the average network. Its simply difficult to keep track of whats installed where, let alone what the latest security baseline recommendations are for each product. Nevertheless, its a task that needs to be performed.
The difficulty of keeping up with all applications, as well as the OSs used in an organization, is part of the reason that applications were prominently featured in the SANS/FBI Top 20 Vulnerability lists for both Windows (IIS, SQL Server) and UNIX (Apache, sendmail, SSH).
The Security+ objectives primarily concern the hardening of network applications rather than those which work on a standalone system without communicating over the network, so that is what we will focus on in this section.
Home - Table Of Contents - Contact Us
CertiGuide for Security+ (http://www.CertiGuide.com/secplus/) on CertiGuide.com
Version 1.0 - Version Date: November 15, 2004
Adapted with permission from a work created by Tcat Houser et al.
CertiGuide.com Version © Copyright 2004 Charles M. Kozierok. All Rights Reserved.
Not responsible for any loss resulting from the use of this site.