Changing Default Configurations

(OBJ .)

Default passwords

• Preset authentication details
• Should be immediately changed
• Rotate every 90 days
• Rely on password manager

Unneeded ports and protocols

• Close any ports that aren’t needed
• Audit ports and protocols that are enabled
• Look for secure versions of protocols and use them instead

Extra open ports

• May be open by default
• Use the more secure ports and close the insecure ones