Securing Citrix NetScaler Access Gateway AAGGE and Web Interface

Securing Citrix NetScaler Access Gateway AAGGE and Web Interface

Few steps to secure and reduce HTML / SQL Injection attempts and Brute Force Password Scripts from Attacking Securing Citrix NetScaler Access Gateway AAGGE and Web Interface.

  1. Setup Web Interface in HA and enable Automatic updates and set a variance of 30 mins for reboots. This should insure all Critical Microsoft Updates are installed on your DMZ Windows Servers and Internet facing servers and updated straight away.
  2. Implement End Point Analyse
  3. Implement CAPTHA
  4. Implement Visual Keyboard
    1. https://online.westpac.com.au/esis/Login/SrvPage?referrer=http%3A%2F%2Fwww.westpac.com.au%2FHomepageAlternative%2F
    2. https://www.ingdirect.com.au/client/index.aspx
  5. Implement Drop down select for PIN (Log me in style)
  6. Put 30 delay wait for retry for incorrect passwords
  7. Implement 2Factor authentication
  8. Setup Double Hop DMZ
  9. .NET / Java SSL Visual Keyboard WIP

Reference

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s