Security, Security features, Planning and implementing security features – APC Network Management Card AP9617 User Manual

®

USER’S GUIDE

network management card

83

Security

Security Features

Planning and implementing security features

As a network device that passes information across the network, the
Network Management Card is subject to the same exposure as other
devices on the network.

Use the information in this section to plan and implement the security
features appropriate for your environment.

Port assignments

If a Telnet, FTP, or Web server uses a non-standard port, a user must
specify the port when using the client interface, such as a Web browser.
The non-standard port address becomes an extra “password,” hiding the
server to provide an additional level of security. The TCP ports for which the
Telnet, FTP, and Web servers listen are initially set at the standard “well
known ports” for the protocols. To hide the interfaces, use any port numbers
from 5000 to 32767.

User names, passwords, community names

All user names, passwords, and community names for SNMP are
transferred over the network as plain text. A user who is capable of
monitoring the network traffic can determine the user names and
passwords required to log in to the accounts of the Control Console or Web
interface of the Network Management Card. This security limitation of the
protocols affects any device using Telnet, a Web server, or an SNMP
version 1 agent.