The router administrator will ensure a password is required to gain access to the router's diagnostics port.

From Perimeter Router Security Technical Implementation Guide Juniper

Part of Password required on the JUNOS diagnostic port.

SV-4583r1_rule The router administrator will ensure a password is required to gain access to the router's diagnostics port.

Vulnerability discussion

If unauthorized users gain access to the routers diagnostic port, it is possible to disrupt service.

Check content

IOS Procedure: N/A A Cisco router does not have a diagnostics port. JUNOS Procedure: Review the router configuration to ensure a password is required when gaining access to the diagnostics port similar to the following: [edit system] diag-port-authentication { encrypted-password "xxxxxxxxxxxxx"; # SECRET-DATA }

Fix text

The router administrator will ensure that a password is required to access the routers diagnostic port.

Pro Tips

Lavender hyperlinks in small type off to the right (of CSS class id, if you view the page source) point to globally unique URIs for each document and item. Copy the link location and paste anywhere you need to talk unambiguously about these things.

You can obtain data about documents and items in other formats. Simply provide an HTTP header Accept: text/turtle or Accept: application/rdf+xml.

Powered by sagemincer