The following questions are designed to test your knowledge of device hardening, and they sometimes build on knowledge found elsewhere in the book. You might find that each question has more than one possible answer. The answers provided in Appendix B are intended to reinforce concepts that you can apply in your own networking environment.
If you have limited resources, which kinds of devices should be hardened first?
Out of the box, are servers or desktop PCs more vulnerable to attack?
How should the documentation for device hardening be tracked within an organization?
Can you think of any ways in which proper host hardening might help identify rogue systems?
As an exercise to learn more about the hardening process, go online and find information about hardening the OS you are running. Implement the hardening tasks. How difficult was the process? Are there any tools for your OS to make the hardening process easier? How secure was your system before you started the hardening process?