Configuration Error

Thu, 03/05/2009 - 23:43 — binde

This incident type includes incorrect file permissions, unpatched operating systems, obsolete versions of software and otherwise unhardened operating systems and applications.

Configuration errors lead to data exposure and a high likelihood of intrusion. Remediation depends on the specific error. Guidance on system hardening and appropriate configuration is available from the Information Assurance Support Environment Security Checklists.

computer abuse
incident handling
incident response