Home
>
Lucent Technologies
>
Communications System
>
Lucent Technologies BCS Products Security Handbook
Lucent Technologies BCS Products Security Handbook
Have a look at the manual Lucent Technologies BCS Products Security Handbook online for free. It’s possible to download the document as PDF or print. UserManuals.tech offer 413 Lucent Technologies manuals and user’s guides for free. Share the user manual or guide on Facebook, Twitter or Google+.
BCS Products Security Handbook 555-025-600 Issue 6 December 1997 Product Security Checklists Page H-29 MERLIN II Communications System H MERLIN II Communications System Also see the general security checklist on page H-3, and the security checklist for any attached voice mail systems or other adjuncts. Customer: _________________________________________ Location: _________________________________________ PBX Type: _________________________________________ New Install: _________________________________________ System Upgrade: _________________________________________ Major Addition: _________________________________________ Table H-10. MERLIN II Communications System Y/N 1Note N/A System Features 900, 976 calls blocked Operator calls restricted 011/LD calls limited by FRLs Remote Access (DISA) Remote Access (DISA) not administered Use of non-DID/DNIS remote access number Voice Mail2 Ports used for voice mail are toll restricted unless outcalling enabled
BCS Products Security Handbook 555-025-600 Issue 6 December 1997 Product Security Checklists Page H-30 MERLIN II Communications System H 1.If “NO” (N), provide Note reference number and explain. 2. See also AVP or MERLIN MAIL Voice Messaging System checklists, as appropriate. If outcalling enabled: nAll voice mail ports except last one toll restricted nLast port for voice mail restricted to areas appropriate for outcalling Product Monitoring SMDR reports monitored daily Customer Education Blocking 976 look-alikes Table H-10. MERLIN II Communications System — Continued Y/N 1Note N/A
BCS Products Security Handbook 555-025-600 Issue 6 December 1997 Product Security Checklists Page H-31 MERLIN LEGEND Communications System H MERLIN LEGEND Communications System Also see the general security checklist on page H-3, and the security checklist for any attached voice mail systems or other adjuncts. Customer: _________________________________________ Location: _________________________________________ System Version: _________________________________________ New Install: _________________________________________ System Upgrade: _________________________________________ Major Addition: _________________________________________ Table H-11. MERLIN LEGEND Communications System Y/N 1Note N/A System Administration Password changed from factory default System Features Allow, Disallow List for all Ports 900, 976 calls blocked Operator calls restricted ARS FRLs established for internal dialing (0), local network calling (1), etc. Extension Remote Call Forwarding not active Remote Call Forward used offnet only with trunks that provide reliable disconnect (for example, ground-start) ARS activated
BCS Products Security Handbook 555-025-600 Issue 6 December 1997 Product Security Checklists Page H-32 MERLIN LEGEND Communications System H Trunk groups dial access = n FRLs assigned to limit network access based on business needs Remote Access Remote Access inactive Use of non-DID/DNIS remote access number Barrier codes are random maximum-length, difficult-to-guess sequences Each Barrier Code’s FRL is appropriate Assign allowed/disallowed lists when appropriate Different barrier code assigned to each user Voice Mail2 Ports use for voice mail outward restricted (FRL) unless outcalling is used nIf outcalling is used, all voice mail ports are outward restricted except those used for outcalling, which are restricted areas appropriate for outcalling by FRL nIf outcalling to specific non-local areas is required, special allowed list has been created for those areas and assigned to the outcalling port(s) Table H-11. MERLIN LEGEND Communications System — Continued Y/N 1Note N/A
BCS Products Security Handbook 555-025-600 Issue 6 December 1997 Product Security Checklists Page H-33 MERLIN LEGEND Communications System H 1.If “NO” (N), provide Note reference number and explain. 2. See also AVP or MERLIN MAIL Voice Messaging System checklists, as appropriate. Disallow list created containing 0, 011, 10, 700, 800, 1800, 809, 1809, 411, 1411, 900, and 9999 Access denied to pooled facility codes 70, and 890-899 Product Monitoring SMDR/Hacker Tracker reports monitored daily Table H-11. MERLIN LEGEND Communications System — Continued Y/N 1Note N/A
BCS Products Security Handbook 555-025-600 Issue 6 December 1997 Product Security Checklists Page H-34 MERLIN MAIL Voice Messaging System H MERLIN MAIL Voice Messaging System Also see the general security checklist on page H-3, and the security checklist for the host communications system. Customer: _________________________________________ Location: _________________________________________ PBX Type: _________________________________________ New Install: _________________________________________ System Upgrade: _________________________________________ Port Additions: _________________________________________ Table H-12. MERLIN MAIL Voice Messaging System Y/N 1Note N/A System Administration System Administrator mailbox changed from default System Administrator mailbox password changed to a maximum-length, difficult-to-guess value System Features Mailboxes created only for active subscribers Outcalling privileges not assigned or assigned only to those requiring them MERLIN LEGEND Communications System voice mail port(s) outward restricted (FRL 0) if no outcalling
BCS Products Security Handbook 555-025-600 Issue 6 December 1997 Product Security Checklists Page H-35 MERLIN MAIL Voice Messaging System H 1.If “NO” (N), provide Note reference number and explain. MERLIN LEGEND Communications System voice mail port(s) used for outcalling restricted via allow list to specific areas if outcalling is needed. All other MERLIN LEGEND Communications System voice mail ports outward restricted. Disallow list created containing 0, 011, 10, 700, 800, 1800, 809, 1809, 411, 1411, 900, and 9999. All MERLIN LEGEND Communications System voice mail ports assigned to this list. (When MERLIN LEGEND Communications System is host system.) Remote Call Forwarding used only with trunks that provide reliable disconnect (such as ground-start). (When MERLIN LEGEND Communications System is host system.) Automated Attendant No pooled facility access codes translated on menus No ARS codes translated on menus Remote call forwarding used offnet only with trunks that provide reliable disconnect (for example, ground-start) End User Education Passwords changed from default for new subscribers Passwords are difficult to guess Passwords are changed quarterly Table H-12. MERLIN MAIL Voice Messaging System — Continued Y/N 1Note N/A
BCS Products Security Handbook 555-025-600 Issue 6 December 1997 Product Security Checklists Page H-36 MERLIN MAIL-ML Voice Messaging System H MERLIN MAIL-ML Voice Messaging System Also see the general security checklist on page H-3, and the security checklist for the host communications system. Customer: _________________________________________ Location: _________________________________________ PBX Type: _________________________________________ New Install: _________________________________________ System Upgrade: _________________________________________ Port Additions: _________________________________________ Table H-13.MERLIN MAIL-ML Voice Messaging System Y/N1Note N/A System Administration System Administrator mailbox changed from default System Administrator mailbox password changed to a maximum-length, difficult-to-guess value System Features Mailboxes created only for active subscribers Outcalling privileges not assigned or assigned only to those requiring them MERLIN LEGEND Communications System voice mail port(s) outward restricted (FRL 0) if no outcalling
BCS Products Security Handbook 555-025-600 Issue 6 December 1997 Product Security Checklists Page H-37 MERLIN MAIL-ML Voice Messaging System H 1.If “NO” (N), provide Note reference number and explain. MERLIN LEGEND Communications System voice mail port(s) used for outcalling restricted via allowed list to specific areas if outcalling is needed. All other MERLIN LEGEND Communications System voice mail ports outward restricted. On MERLIN LEGEND Communications System, create disallow list containing 0, 011, 10, 700, 800, 1800, 809, 1809, 411, 1411, 900, and 9999. All MERLIN LEGEND Communications System voice mail ports assigned to this list. Remote Call Forwarding used only with trunks that provide reliable disconnect (such as ground-start) Automated Attendant No pooled facility access codes translated on menus No ARS codes translated on menus Remote call forwarding used offnet only with trunks that provide reliable disconnect (for example, ground-start) End User Education Passwords changed from default for new subscribers Passwords are difficult to guess Passwords are changed quarterly Table H-13.MERLIN MAIL-ML Voice Messaging System — Continued Y/N1Note N/A
BCS Products Security Handbook 555-025-600 Issue 6 December 1997 Product Security Checklists Page H-38 MERLIN MAIL R3 Voice Messaging System H MERLIN MAIL R3 Voice Messaging System Also see the general security checklist on page H-3, and the security checklist for the host communications system. Customer: _________________________________________ Location: _________________________________________ PBX Type: _________________________________________ New Install: _________________________________________ System Upgrade: _________________________________________ Port Additions: _________________________________________ Table H-14.MERLIN MAIL R3 Voice Messaging System Y/N1Note N/A System Administration System Administrator mailbox changed from default System Administrator mailbox password changed to a maximum-length, difficult-to-guess value System Administration menu access password changed to a maximum-length, difficult-to-guess value Forced password change for new subscribers User password > 6 characters long System Features Mailboxes created only for active subscribers Transfer restricted to subscribers only