|
|
Cisco products are designed to be secure. However, some action is required on your part to ensure that the necessary security precautions are made and implemented. Maximum security is assured by the following factors:
The system allows fixed length and variable length passwords (PINs) from 4 to 8 digits. The system default is a fixed length of 4 digits. You should change it through uOne Administration to a variable length of 5 to 8 digits.
The system allows fixed length and variable length e-mail passwords from 4 to 8 characters. The system default is a fixed length of 4 digits. You should change it through uOne Administration to a variable length of 5 to 8 characters.
The system disconnects a subscriber after a configurable number of failed login attempts in a single session. You can change that number by updating the MaxLoginAttempts attribute in the UM.ini file. The default is 3.
The system locks out a subscriber after the maximum number of consecutive failed login attempts across multiple sessions. You can change this number by updating the Class of Service in uOne Administration. The default is 6.
You can administer addressing rules and dialing rules to limit outdialing capability on the system. By administering the DialMap.ini file and your gatekeepers, gateways, and PBXs appropriately, you can minimize toll fraud.
Subscribers are responsible for their own Passwords/PINs. It is your responsibility to tell them the importance of password security.
Make these recommendations to subscribers:
Administration passwords should not be trivial.
Regularly backup system data to ensure a timely recovery, should it be required.
Regularly check logs for lockout, password problems, etc.
Posted: Mon Sep 25 20:10:42 PDT 2000
Copyright 1989-2000©Cisco Systems Inc.