| Paid content will be excluded from the download. |
|
Filter
|
|
Matches : 23631 |
Download
| Alert*
|
Turn on PowerShell Script Block Logging
This policy setting enables logging of all PowerShell script input to the Microsoft-Windows-PowerShell/Operational event log. If you enable this policy setting, Windows PowerShell will log the processing of commands, script blocks, functions, and scripts - whether invoked interactively, or through automation.
If you disable this policy setting, log ...
Minimum PIN length
Minimum PIN length configures the minimum number of characters required for the work PIN. The lowest number you can configure for this policy setting is 4. The largest number you can configure must be less than the number configured in the Maximum PIN length policy setting or the number 127, whichever is the lowest.
If you configure this policy setting, the work PIN length m ...
Disable: 'MSS: (DisableIPSourceRouting) IP source routing protection level (protects against packet spoofing)' for DisableIPSourceRouting
MSS: (DisableIPSourceRouting) IP source routing protection level (protects against packet spoofing)
Counter Measure:
Configure the MSS: (DisableIPSourceRouting) IP source routing protection level (protects against packet spoofing) entry to a value of H ...
Disable: 'Allow deployment operations in special profiles'
This policy setting allows you to manage the deployment operations of app packages when the user is logged in under special profiles.
Deployment operation refers to adding, registering, staging, updating or removing an app package.
Special profiles refer to profiles with the following types: mandatory, super-mandatory, temporary o ...
Specify the 'Network access: Remotely accessible registry paths' for Machine
This policy setting determines which registry paths will be accessible after referencing the WinReg key to determine access permissions to the paths.
Note: This setting does not exist in Windows XP. There was a setting with that name in Windows XP, but it is called "Network access: Remotely accessible registry paths ...
Ensure No Auditing for 'Audit Policy: Logon-Logoff: IPsec Extended Mode'
This subcategory reports the results of AuthIP during Extended Mode negotiations. Events for this subcategory include:
- 4978: During Extended Mode negotiation, IPsec received an invalid negotiation packet. If this problem persists, it could indicate a network issue or an attempt to modify or replay this negotiation. ...
Disable: 'MSS: (DisableSavePassword) Prevent the dial-up password from being saved (recommended)' for DisableSavePassword
MSS: (DisableSavePassword) Prevent the dial-up password from being saved (recommended)
Counter Measure:
Enable this setting.
Potential Impact:
Users will need to retype their password each time a dial-up connection is made.
Disable: 'MSS: (PerformRouterDiscovery) Allow IRDP to detect and configure Default Gateway addresses (could lead to DoS)' for PerformRouterDiscovery
MSS: (PerformRouterDiscovery) Allow IRDP to detect and configure Default Gateway addresses (could lead to DoS)
Counter Measure:
Configure the MSS: (PerformRouterDiscovery) Allow IRDP to detect and configure Default Gateway addresses (could l ...
Ensure No Auditing for 'Audit Policy: Account Management: Computer Account Management'
This subcategory reports each event of computer account management, such as when a computer account is created, changed, deleted, renamed, disabled, or enabled. Events for this subcategory include:
- 4741: A computer account was created.
- 4742: A computer account was changed.
- 4743: A computer acc ...
Disable: 'Windows Firewall: Private: Logging: Log dropped packets' for LogDroppedPackets
Use this option to log when Windows Firewall with Advanced Security discards an inbound packet for any reason. The log records why and when the packet was dropped. Look for entries with the word DROP in the action column of the log.
Counter Measure:
Configure this policy setting to "Yes".
Potent ...
Pages: Start 1 2 3 4 5 6 7 8 9 10 11 12 13 14 .. 2363
© 2016 SecPod Technologies
