actually compromising the remote device.
                   SNMP countermeasures include:

                       •  Block ports 161,162 on firewalls
                       •  Implement SNMP v3, which encrypts
                          data and provides for strong
                          authentication protocols
                       •  Change the default community string if
                          using only SNMP v1 or v2
                       •  Configure SNMP agents to respond only
                          to pre-programmed IP addresses
                       •  Disable/remove SNMP agent software
                          if not used
                       •  Consider using IPSec to encrypt SNMP
                          data between the manager and agents

                   LDAP – is used to access directory listings
                   within an active directory or from other
                   services. LDAP countermeasures include:

                       •  Use SSL
                       •  Use authentication
                       •  Email address scheme can reveal
                          usernames

                   NTP – is a protocol designed to synchronize
                   clocks of networked computers.

                   SMTP – is very simple and is used to send
                   email messages as opposed to POP3 or IMAP,





                                                               422