New Content #13401: Best practices doc for rotating credentials and keys - pfSense Docs - pfSense bugtracker

Actions

Copy link

New Content #13401

closed

Best practices doc for rotating credentials and keys

Added by Jim Pingle over 1 year ago. Updated over 1 year ago.

Status:

Resolved

Priority:

Normal

Assignee:

Jim Pingle

Category:

General

Target version:

Start date:

Due date:

% Done:

100%

Estimated time:

Description

We need a document somewhere in the pfSense docs which describes methods for periodic rotation of security-related items, including:

User passwords (user manager, perhaps other areas such as PPPoE/L2TP server?)
Credentials for connecting to external authentication servers
Certificate private keys (for GUI, for VPNs, other purposes)
VPN pre-shared keys (IPsec, WireGuard, etc)
Packages which carry their own credential information are not as critical, but may be worth mentioning (e.g. FreeRADIUS and NET-SNMP at least)

The timing of such changes may vary widely by organization so we probably shouldn't suggest time frames for these, only note methods and potential pitfalls (e.g. importance of coordinating changes with VPN peers)

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

pfSense » pfSense Docs

New Content #13401

Best practices doc for rotating credentials and keys

Updated by Brad Davis over 1 year ago

Updated by Jim Pingle over 1 year ago

Updated by Jim Pingle over 1 year ago

Updated by Danilo Zrenjanin over 1 year ago