This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Cookie Policy. Click Preferences to customize your cookie settings.
About mcruz10
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About mcruz10
10-04-2021
1Post
0Likes
0Solutions
Oct 04, 2021Last Visited
User
Activity
User
Profile
Latest posts by mcruz10
| Subject | Views | Posted |
|---|---|---|
| 1727 | 10-04-2021 08:30 PM |
User Badges
Community Statistics
| Member Since | 10-04-2021 08:17 PM |
| Date Last Visited | 10-04-2021 08:31 PM |
| Posts | 1 |
10-04-2021
08:30 PM
I have found several of my network devices are showing up within our vulnerability management scanner with X.509 Certificate Subject CN does not match the entity name as a vulnerability. This is more than likely a DNS issue as I do not have any network devices with DNS records. I have been told conflicting opinions and would like to know how do I find the best practices on this finding. Which one would be the most accurate process that I should follow: It is best practice not to place DNS records on my network devices as it will make them unrecognizable on the public-facing side. Therefore, security by obscurity. Attempt to place DNS records as this secures all devices and allows for security teams to identify and ensure that these devices are behaving as needed through the SIEM.
... View more
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
10-04-2021
08:31 PM
|
Latest Tags
No tags yet
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks