I am wirting a document on best practicies on ensuring a Pix Firewall is secure. I was wondering if anyone had anything they would like to add to this in order for me to compile my document. Once completed i will see if Chris will post it somewhere on the site for everyone to view and hopefully use in ensuring their Pix Firewalls are nice and secure.
Any comments or links to resources also covering this would be very useful. I have already come up with a load of things such as;
Disabling Telnet and ensuring SSH is used
Disable SNMP Version 1 & 2 (although i have read that the Pix 7 doesn't support SNMP Version 3 and that its best to use 2c, i do see an option for disabling version 3 also which is interesting)
enable password & Passwd