Which method can be used to harden a device?
- allow USB auto-detection
- maintain use of the same passwords
- use SSH and disable the root account access over SSH
- allow default services to remain enabled
Answers Explanation & Hints:
The basic best practices for device hardening are as follows:
Ensure physical security.
Minimize installed packages.
Disable unused services.
Use SSH and disable the root account login over SSH.
Keep the system updated.
Disable USB auto-detection.
Enforce strong passwords.
Force periodic password changes.
Keep users from re-using old passwords.
Review logs regularly.