This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Help

Who rated this post

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
HeikoAnkenbrand
MVP Diamond
MVP Diamond
‎2024-05-31 11:50 AM

I once played in the lab and found other things which in my view should also be renewed:

CUT>>>
In addition, you should take the following extra security measures, which are documented in sk182336:

  1. Change the password of the LDAP Account Unit
  2. Reset password of local accounts connecting to VPN with password authentication
  3. Additional Frequently Asked Questions
  4. Prevent Local Accounts from connecting to VPN with Password Authentication
  5. Renew the server certificates for the Inbound HTTPS Inspection on the Security Gateway
  6. Renew the certificate for the Outbound HTTPS Inspection on the Security Gateway
  7. Reset Gaia OS passwords for all local users
  8. Regenerate the SSH local user certificate on the Security Gateway
  9. Renew the certificate for the SSH Inspection

<<<CUT

In my view, the list should be expanded to include the following points:
   10) Web server private keys + crt
   11) Grub password hashes
   12) GAIA password hashes
   13) IA password hashes
   14) SSH server keys
   15) Expert password hash

➜ CCSM Elite, CCME, CCTE ➜ www.checkpoint.tips
(1)
Who rated this post