IC Realtime IPEL-M80F-IRW2 Product Manual - Page 199

Set and Update Passwords Reset Information Timely

Get IC Realtime IPEL-M80F-IRW2 PDF manuals and user guides View all IC Realtime IPEL-M80F-IRW2 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 199 highlights

We suggest that you perform physical protection to equipment, especially storage devices. For example, place the equipment in a special computer room and cabinet, and implement access control permission and key management to prevent unauthorized personnel from carrying out physical contacts such as damaging hardware, unauthorized connection of removable equipment (such as USB flash disk, serial port), etc. 2. Change Passwords Regularly We suggest that you change passwords regularly to reduce the risk of being guessed or breached. 3. Set and Update Passwords Reset Information Timely This camera supports a password reset function. Please set up related information for password reset in time, including the password protection questions. If the information changes, please modify it accordingly. When setting password protection questions, it is suggested not to use answers that can be easily guessed. 4. Enable Account Lock The account lock feature is enabled by default, and we recommend you to keep it enabled to guarantee the account security. If an attacker attempts to log in with the wrong password several times, the corresponding account and the source IP address will be locked. 5. Change Default HTTP and Other Service Ports We suggest changing the default HTTP and other service ports into any set of numbers between 1024-65535, reducing the risk of outsiders being able to guess which ports you are using. 6. Enable HTTPS We suggest you to enable HTTPS, so that you visit Web service through a secure communication channel. 7. MAC Address Binding We recommend you to bind the IP and MAC address of the gateway to the equipment, thus reducing the risk of ARP spoofing. 8. Assign Accounts and Privileges Reasonably According to business and management requirements, add only the required users and assign a minimum set of permissions to them. 9. Disable Unnecessary Services and Choose Secure Modes If not needed, it is recommended to turn off some services such as SNMP, SMTP, UPnP, etc., to reduce risks. If necessary, it is highly recommended that you use safe modes, including but not limited to the following services: ● SNMP: Choose SNMP v3, and set up strong encryption passwords and authentication passwords. ● SMTP: Choose TLS to access mailbox server. ● FTP: Choose SFTP, and set up strong passwords. ● AP hotspot: Choose WPA2-PSK encryption mode, and set up strong passwords. 10.Audio and Video Encrypted Transmission If your audio and video data contents are very important or sensitive, we recommend that you use encrypted transmission function, to reduce the risk of audio and video data being stolen during transmission. 187

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
  • 135
  • 136
  • 137
  • 138
  • 139
  • 140
  • 141
  • 142
  • 143
  • 144
  • 145
  • 146
  • 147
  • 148
  • 149
  • 150
  • 151
  • 152
  • 153
  • 154
  • 155
  • 156
  • 157
  • 158
  • 159
  • 160
  • 161
  • 162
  • 163
  • 164
  • 165
  • 166
  • 167
  • 168
  • 169
  • 170
  • 171
  • 172
  • 173
  • 174
  • 175
  • 176
  • 177
  • 178
  • 179
  • 180
  • 181
  • 182
  • 183
  • 184
  • 185
  • 186
  • 187
  • 188
  • 189
  • 190
  • 191
  • 192
  • 193
  • 194
  • 195
  • 196
  • 197
  • 198
  • 199
  • 200
We suggest that you perform physical protection to equipment, especially storage devices. For
example, place the equipment in a special computer room and cabinet, and implement access
control permission and key management to prevent unauthorized personnel from carrying out
physical contacts such as damaging hardware, unauthorized connection of removable equipment
(such as USB flash disk, serial port), etc.
2.
Change Passwords Regularly
We suggest that you change passwords regularly to reduce the risk of being guessed or breached.
3.
Set and Update Passwords Reset Information Timely
This camera supports a password reset function. Please set up related information for password
reset in time, including the password protection questions. If the information changes, please
modify it accordingly. When setting password protection questions, it is suggested not to use
answers that can be easily guessed.
4.
Enable Account Lock
The account lock feature is enabled by default, and we recommend you to keep it enabled to
guarantee the account security. If an attacker attempts to log in with the wrong password several
times, the corresponding account and the source IP address will be locked.
5.
Change Default HTTP and Other Service Ports
We suggest changing the default HTTP and other service ports into any set of numbers between
1024–65535, reducing the risk of outsiders being able to guess which ports you are using.
6.
Enable HTTPS
We suggest you to enable HTTPS, so that you visit Web service through a secure communication
channel.
7.
MAC Address Binding
We recommend you to bind the IP and MAC address of the gateway to the equipment, thus reducing
the risk of ARP spoofing.
8.
Assign Accounts and Privileges Reasonably
According to business and management requirements, add only the required users and assign a
minimum set of permissions to them.
9.
Disable Unnecessary Services and Choose Secure Modes
If not needed, it is recommended to turn off some services such as SNMP, SMTP, UPnP, etc., to
reduce risks.
If necessary, it is highly recommended that you use safe modes, including but not limited to the
following services:
SNMP: Choose SNMP v3, and set up strong encryption passwords and authentication
passwords.
SMTP: Choose TLS to access mailbox server.
FTP: Choose SFTP, and set up strong passwords.
AP hotspot: Choose WPA2-PSK encryption mode, and set up strong passwords.
10.
Audio and Video Encrypted Transmission
If your audio and video data contents are very important or sensitive, we recommend that you use
encrypted transmission function, to reduce the risk of audio and video data being stolen during
transmission.
187