Servers and network devices should not rely on a firewall alone to protect them from attack. A secure network environment must include multiple layers of defense against unauthorized access. Ensuring these hosts are properly hardened can help prevent total compromise in the event that a firewall breach occurs, or unauthorized access to internal networks is obtained.

Approach

GDS configuration reviews include an analysis of local configuration settings and access control mechanisms in order to identify potential security weaknesses or areas for improvement. Server configuration reviews should be performed on critical systems to ensure that they are adequately protected from internal network threats. The specific tests that are conducted during a configuration review vary based on the type and nature of the system. Examples of typical tests that are performed during a review can include:

• Local Password Policy and Lockout
• Server Audit Settings, User Rights Assignment and other security options
• Running Process Lists and Programs Scheduled to Automatically Start
• Blank Passwords and "Joe Login" Accounts
• Local Rights and Group Membership Analysis
• Antivirus and Server Patch Management
• File Shares and File Permissions
• Common Network Service Misconfiguration and Vulnerabilities
• Network Service Permissions and Local Privilege Levels

Deliverables

GDS delivers a detailed and comprehensive report at the conclusion of each infrastructure security assessment. All GDS reports are highly customizable depending on requested reporting requirements and typically include an executive summary, detailed technical findings and recommendations, and illustrative walkthroughs of all exploitation steps performed.

Optional Services

• Regression testing of all items identified during the assessment

If you would like to learn more information about having GDS conduct server configuration reviews for your organization, please contact us for more details.