Security
BAT54-Rail/F..
Release
7.54
06/08
7.1
Protection for the configuration
239
If you comply with these simple rules, you will achieve the highest possible
degree of security.
U Entering the password
You will find the box to enter the password in LANconfig in the configuration
area 'Management' on the 'Admin' tab. Under WEBconfig you run the wizard
Security Settings. In a terminal or Telnet session you set or change the
password with the command
passwd
.
U Protecting the SNMP access
At the same time you should also protect the SNMP read access with a pass-
word. For SNMP the general configuration password is used.
7.1.2 Login barring
The configuration in the BAT is protected against “brute force attacks“ by bar-
ring logins. A brute-force attack is the attempt by an unauthorized person to
crack a password to gain access to a network, a computer or another device.
To achieve this, a computer can, for example, go through all the possible
combinations of letters and numbers until the right password is found.
As a measure of protection against such attacks, the maximum allowed num-
ber of unsuccessful attempts to login can be set. If this limit is reached, ac-
cess will be barred for a certain length of time.
If barring is activated on one port all other ports are automatically barred too.
The following entries are available in the configuration tools to configure login
barring:
D Lock configuration after (
Login-errors
)
Configuration tool Run
LANconfig Management
 Admin  Main device password
WEBconfig Security settings
Terminal/Telnet
passwd
Configuration tool Run
LANconfig Management
 Admin  Password required for SNMP read
permission
WEBconfig Expert Configuration
 Setup  SNMP  Password-
required-for-SNMP-read-access
Terminal/Telnet
setup/SNMP/password-required
To Next Page
Loading...
Need help?
General
