Chapter 23 - Ultra Secure Mode
Polycom, Inc. 23-53
System Flag:
ENABLE_SENDING_ICMP_DESTINATION_UNREACHABLE
This System Flag enables the administrator to control whether the RMX sends ICMP
Destination Unreachable Messages (ICMP message type #3).
Destination Unreachable Messages are sent when the RMX receives a UDP packet on a port
configured for TCP, or receives a UDP packet on a port configured for TCP, or when, in real
time, a packet is not processed in the prescribed time interval. For detailed timestamp
information see RFC 792.
The Destination Unreachable Message may also be sent when Network or Host is unreachable
(sent by the router) or the Port is unreachable (sent by the RMX).
• Range: YES / NO
• Default:
— Ultra Secure Mode: NO - Destination Unreachable Message is never sent.
— Default Security Mode: YES -
Destination Unreachable
Message
is sent when needed.
Modifying the flag values
To modify the System Flags values, the flags must first be manually added to system.cfg.
For more information about System Flags, see “Manually Adding and Deleting System Flags” in
the Administrator’s Guide.
Password Encryption
In compliance with UC APL, FIPS 140-2 the SHA-256 (Secure Hash Algorithm) is applied to:
• Application login passwords.
• Linux operating system passwords.
• CSRs (Certificate Signing Requests).
The output value for SHA-256 is 256 bits whereas for SHA-1 the output value is 160 bits.