Procedural and Informational Documentation:
In this lab, I try to use as much of the same password as possible even though that’s one of the worst practices from a security standpoint. In this lab, I made three VMs (PFSense Router, RHEL 7 for the monitoring server and another separate RHEL 7 for the Wiki server). The reason I made separate servers for the monitoring and the wiki is to avoid multiple disruptions of services in case of a single VM being down. The passwords for accessing the infrastructure as follow:
• PFSense: NoOnehere90
• Wiki RHEL 7 Server: NoOnehere90 (root and me have the same password)
• RHEL 7 monioring Server: NoOnehere90 (root and me have the same password)
• Wiki:
- Username: wiki
- Password: Password
• Nagios:
- Username: nagiosadmin
- Password: 12345 “Yes because RLES was so …show more content…
Since we are connected to the outside world, we have to have a sufficient level of security in place. First of all, most operating systems come with default settings that don’t have enough security in place like firewall rules and ACLs. Also, on the most harmful features is having remote accesses enabled by default. Also, images come without the security updates and that might leave those VMs vulnerable to recent vulnerabilities. Since we have to be connected to the outside world to be able to download certain software and updates, we shall be careful to backdoors that we might have in