| Lucent CM security hardening | |||
|
| GO | |
|
This topic describes the steps to increase security on the Lucent CM system.
You can increase security levels in the Lucent CM by making the following changes to address vulnerabilities.
Restrict SSH to SSH version 2 only.
Use a stronger encryption algorithm for SSH.
Close ports that are not required.
Important! After you made a change, you must reboot the operating system for the change to take effect.
You can also make multiple changes and reboot once, after you completed making the last change.
You can perform the procedure on one of the following moments:
During initial installation of the Lucent CM system
On an existing running Lucent CM system
Important! The procedures must be performed on all Lucent CM nodes.
Perform the following steps:
Perform the following steps to change to a stronger encryption algorithm:
1 |
Login to the Lucent CM node as root. | ||
2 |
Go to the directory where the ssh_config file is located. Type the following command and press Enter: cd /etc/ssh | ||
3 |
Open the ssh_config file. | ||
4 |
Replace line:
By line:
End of steps |
Perform the following steps to close ports on the Lucent CM nodes:
1 |
Login to the Lucent CM node as root. |
2 |
Close port 6000:
|
3 |
Close port 631: |
4 |
Close port 445: |
5 |
Close port 111: End of steps |
Perform the following steps to reboot the operating system for the change to take effect:
1 |
Login to the Lucent CM node as root. |
2 |
Type the following command and press Enter: reboot End of steps |
|
|
GO | |
|
| © Lucent Technologies | |||