APC AP9606 User Manual

67

As a network device that passes information across the network, the 
Management Card is subject to the same exposure as other devices on 
the network. 

Use the information in this section to plan and implement the security 
features appropriate for your environment.

If a Telnet,

 FTP

, or Web server uses a non-standard port, a user must 

specify the port when using the client interface, such as a Web browser. 
The non-standard port address becomes an extra “password,” hiding 
the server to provide an additional level of security. The 

TCP

 ports for 

which the Telnet, 

FTP

, and Web servers listen are initially set at the 

standard “well known ports” for the protocols.To hide the interfaces, use 
any port numbers from 

5000 to 65535

.

For examples of what the commands would look like when the default 
port numbers are changed, see 

.

All user names, passwords, and community names for 

SNMP

 are 

transferred over the network as plain text. A user who is capable of 
monitoring the network traffic can determine the user names and 
passwords required to log into the Management Card’s Control Console 
or Web interface as an Administrator or Device Manager. This security 
limitation of the protocols affects any device using Telnet, a Web server, 
or an 

SNMP 

version 1 agent.