Free Republic
Browse · Search 		News/Activism
Topics · Post Article

To: usconservative

Your public FTP is still SFTP, right?


19 posted on 12/20/2014 7:01:26 AM PST by Lazamataz ("Two parties, governing AGAINST the will of the people, not with the consent of the governed." --MrB)
[ Post Reply | Private Reply | To 17 | View Replies ]

To: Lazamataz
Yes, SecureFTP running on a non-standard port.

Additionally all external/internet based access to the server requires a matching certificate AND secondary authentication which would include the combination of a PIN and random generated code that's good for 15 seconds.

All of our Internal access to those servers happens over a private switched network using virtual KVM's to enable console port (serial port) based access.

I developed the security requirements and control standards for our organization. They passed our own internal Risk and Audit folks as well as the Feds.

After the first of the year I'll be tightening things down further. At some point it'll make our Unix/Linux and Windows Admin's and Engineer's scream, but that's ok. My job is to protect the bank. No one gets through on my watch.

20 posted on 12/20/2014 7:06:59 AM PST by usconservative (When The Ballot Box No Longer Counts, The Ammunition Box Does. (What's In Your Ammo Box?))
[ Post Reply | Private Reply | To 19 | View Replies ]

Free Republic
Browse · Search 		News/Activism
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson