- Allow users to re-use old passwords.
- Force periodic password changes.
- Allow USB auto-detection.
- Allow default services to remain enabled.
Explanation: The basic best practices for device hardening are as follows:
Ensure physical security.
Minimize installed packages.
Disable unused services.
Use SSH and disable the root account login over SSH.
Keep the system updated.
Disable USB auto-detection.
Enforce strong passwords.
Force periodic password changes.
Keep users from re-using old passwords.
Review logs regularly.
More Questions: CCNA Cyber Ops Practice Final Exam Answers