Ensure ‘MSS: (DisableSavePassword) Prevent the dial-up password from being saved’ is set to ‘Enabled’
Details When you dial a phonebook or VPN entry in Dial-Up Networking, you can use the ‘Save Password’ option so...
- Home
- Security Hardening
- CIS Microsoft Windows 10 Enterprise Release 1809 V1.6.1 L2 Bl Ng
CIS Microsoft Windows 10 Enterprise Release 1809 V1.6.1 L2 Bl Ng
Ensure ‘MSS: (KeepAliveTime) How often keep-alive packets are sent in milliseconds’ is set to ‘Enabled: 300,000 or 5 minutes (recommended)’
Details This value controls how often TCP attempts to verify that an idle connection is still intact by sending a...Ensure ‘MSS: (PerformRouterDiscovery) Allow IRDP to detect and configure Default Gateway addresses (could lead to DoS)’ is set to ‘Disabled’
Details This setting is used to enable or disable the Internet Router Discovery Protocol (IRDP), which allows the system to...Ensure ‘MSS: (TcpMaxDataRetransmissions) How many times unacknowledged data is retransmitted’ is set to ‘Enabled: 3’
Details This setting controls the number of times that TCP retransmits an individual data segment (non-connect segment) before the connection...Ensure ‘MSS: (TcpMaxDataRetransmissions IPv6) How many times unacknowledged data is retransmitted’ is set to ‘Enabled: 3’
Details This setting controls the number of times that TCP retransmits an individual data segment (non-connect segment) before the connection...Ensure ‘Peer Name Resolution Protocol (PNRPsvc)’ is set to ‘Disabled’
Details Enables serverless peer name resolution over the Internet using the Peer Name Resolution Protocol (PNRP). The recommended state for...Ensure ‘Peer Networking Grouping (p2psvc)’ is set to ‘Disabled’
Details Enables multi-party communication using Peer-to-Peer Grouping. The recommended state for this setting is: Disabled. Rationale: Peer Name Resolution Protocol...Ensure ‘Peer Networking Identity Manager (p2pimsvc)’ is set to ‘Disabled’
Details Provides identity services for the Peer Name Resolution Protocol (PNRP) and Peer-to-Peer Grouping services. The recommended state for this...Ensure ‘PNRP Machine Name Publication Service (PNRPAutoReg)’ is set to ‘Disabled’
Details This service publishes a machine name using the Peer Name Resolution Protocol. Configuration is managed via the netsh context...Ensure ‘Problem Reports and Solutions Control Panel Support (wercplsupport)’ is set to ‘Disabled’
Details This service provides support for viewing, sending and deletion of system-level problem reports for the Problem Reports and Solutions...