Subscriber Password Guidelines | AT&T 585-310-231 specs

Security Tips

To help prevent toll fraud at the automated attendant, follow these guidelines:

■Do not allow transfers to inside or outside dial tone.

■Restrict transfers to subscribers only.

■Inform all system operators that they are not to dial outside calls. Request that operators report all attempts to bypass switch restrictions to the telecommunications department for repairs or to the corporate security office for investigation.

■Inform employees on how to report suspected toll fraud to the System Administrator.

■Monitor call detail recording (SMDR) reports, call traffic reports, AUDIX traffic reports, and other available reports regularly.

Subscriber Password Guidelines

To minimize the risk of unauthorized persons accessing subscriber mailboxes and using them for toll fraud, inform all subscribers of these guidelines and request that they follow these guidelines for voice messaging system passwords.

■Mailbox passwords are required.

■Require that passwords be as long as feasible, with a minimum of five digits, and a length that is at least one digit longer than the maximum extension length.

■Subscribers must change the initial password the first time they log in to the voice messaging system. To ensure this, the initial password should have fewer digits than the minimum password length.

■Never have greetings that state you will accept third party billed calls. A greeting like this allows unauthorized individuals to charge calls to your company. If a subscriber calls somebody within the company and receives a greeting like this, they should point out the vulnerability to the person and recommend that they change the greeting immediately.

■Never use obvious or trivial passwords such as your phone extension,

room number, employee identification number, social security number, or the birthday of any family member. Also avoid easily guessed numeric

combinations such as	1 ,	3 ,	9 ,	7 and 2 , 4 , 8 , 6 (geometric pattern
on the dial), 9 , 9 , 9 ,	9 ,	9 ,	9	(repeated digits), and 7 , 2 , 7 , 7 , 9 ,

6 , 7 , 3 (“password” sp elled out on the dial).

■Passwords should not be written down, stored, or shared with others.

Issue 2.0 December 1995 A-5

Image 123

AT&T 585-310-231 manual Subscriber Password Guidelines, Issue 2.0 December 1995 A-5

Contents

Merlin Legend Contents Planning the Integration Implementing the Integration Merlin Legend Switch Administration System Security and Toll Fraud Installing Merlin Legend Software on the Intuity System ABB Xii Issue 2.0 December How This Book Is Organized About This DocumentPurpose Intended AudiencePage Conventions Used Product Name Company Trademarks and Service Marks Related Resources Document Number Issue Xviii Issue 2.0 December AT&T How to Make Comments About This Book Introduction Merlin Legend Integration Concepts Service Layer Merlin Legend Switch Integration Concepts 4Issue 2.0 December Intuity Audix Voice Mail Services 6Issue 2.0 December Port Considerations Intuity Intro Voice Response 8Issue 2.0 December Intuity Port Administration Dynamic Allocation or Shared PortsDedicated Allocation Automated Attendant Enhancements Primary and Secondary Automated Attendant ConceptsAutomated Attendant Operation Schedule Automated Attendant Operation Based on Merlin Legend Status Automated Attendant Holiday Operation Automated Attendant Tenant Service Operation Issue 2.0 December 1995 General Call Handling by the Intuity System Routing Table Audix 16Issue 2.0 December Issue 2.0 December 1995 Routing Table Processing Direct to Voice Mail DVM Button Multiple Automated Attendants Functionality Differences For the Merlin Legend System Integration Planning Planning the Integration Application Names Number PlanVoice Ports Group Coverage Intuity Audix SubscribersLoop-Start Reliable Disconnect Intuity System Trunks Group Calling Restrictions and Allowed and Disallowed Lists Intuity System Integration Planning Night Service Digits in Dial Plan Worksheet a Number of Digits in Dial Plan System Features Channel Information for InstallationAssign Service to Called Number Routing Table Issue 2.0 December 1995 Worksheet B Routing Table Issue 2.0 December 1995 Business Schedules Worksheet C Business Schedule Holiday Schedules Worksheet D Holiday Schedule 18Issue 2.0 December Hardware Platform Installation Implementing the IntegrationHardware Platform Connection Merlin Legend Initial Administration Completing the Software Installation Intuity System Initial Administration 4Issue 2.0 December Perform Acceptance Testing Administer Automated Attendant Enhancements Administer and Test Optional Intuity Packages Administer Merlin Legend System for Cut-to-Service Administer Networking Connectivity Voice Port Requirements Connect IVC6 Boards Using 885A Adapter Intuity System ConnectionsIVC6 Connections Connecting IVC6 Boards Using 885A Adapter Connect IVC6 Boards Using 104A Connecting Blocks 104A Connecting Serial Ports 6Issue 2.0 December AdapterMERLIN Legend Communications System 8Issue 2.0 December Merlin Legend Communications System Connecting Admin Ports More Than Feet/Different Power Outlet Connecting to Serial Port 2 COM2 Connecting Smdr Ports Within 50 feet, Same Power Outlet Intuity Multi-Port 14Issue 2.0 December Issue 2.0 December 1995 Merlin Legend Communications System Issue 2.0 December 1995 Networking Connecting Low-Speeed Digital Networking Issue 2.0 December 1995 Accx Remote Maintenance Issue 2.0 December 1995 MAP/5 Remote Access Connecting Dedicated Lines within 50 Feet Dedicated Line Access 12. Local Dedicated Line Terminal Connections Connecting Dedicated Lines beyond 50 Feet Issue 2.0 December 1995 D6AP-87 400B2 Adapter D8W-87 Wall Jack Remote Access Dial-Up Connections 15. Remote Access Dial-Up Connections Disconnect Signaling Reliability Merlin Legend Switch Administration Group Coverage Member Assignments Group Calling Member Assignments Group Calling Trunk or Pool Assignments Hunt Type 6Issue 2.0 December Group Coverage Receiver Group Type Allowed Lists Assign Allowed Lists to Intuity Ports Issue 2.0 December 1995 Disallowed Lists Assign Disallowed Lists to Intuity Ports 14Issue 2.0 December Assign Extensions for Night Service Assign Audix Calling Group for Night Service Issue 2.0 December 1995 Administering the Switch Interface Intuity System Administration Stopping and Restarting the Voice System Following message is displayed Entering the Business Schedules Issue 2.0 December 1995 Entering the Holiday Schedules Issue 2.0 December 1995 Entering the Routing Table Issue 2.0 December 1995 Other Administration Protecting Your System System Security and Toll Fraud Security Tips Switch Security Voice Messaging System Security Issue 2.0 December 1995 A-3 Automated Attendant System Security Issue 2.0 December 1995 A-5 Subscriber Password Guidelines Create Disallowed Number Lists Switch AdministrationRestrict Outward Dialing Restrict Toll Areas Intuity Audix Administration Restrict Amis Networking Number RangesOutcalling Basic Call Transfer Mailbox Administration Call Detail Recording Detecting Toll Fraud Intuity Audix Traffic Reports AT&T’s Statement of Direction AT&T Security Offerings AT&T Corporate Security AT&T Toll Fraud Crisis Intervention Installing Merlin Legend Software on the Intuity System Requirements Procedure 1 Stop the Voice System Procedure 2 Load Merlin Legend Software Figure B-1. Software Install Screen Page Enter y to continue the shutdown. The system responds Procedure 3 Turn on Transfer Feature Hunt Group Administration Switch Administration for Intuity Lodging Message Retrieval Administration Assign F3 Voice Mail Administration Cut-to-Service Call Coverage PathDo Not Disturb One-Step Cut-to-Service Gradual Cut-to-Service Summary Abbreviations BitBps Key Mbyte KbpsKbyte KHz ABB-4Issue 2.0 December Glossary Analog networking Analog signalAmis Prefix Ampere amp Audit Audio Messaging Interchange Specification AmisAmerican wire gauge Audio Information Exchange Audix Basic rate access Background testingBackup Basic input/output system Bios Bulletin board Bps bits per secondBroadcast messaging Buffer Call management system CMS Call coverageCall delivery Call-distribution group Channel Class of service COSCommand Central processing unit CPU Coverage path ConfigurationCompound message Controller circuit card Demand testing Data service unit DSUDefault Default print number DIP switch Diagnostic testingDialed number identification service *DNISSVC Digital signal processor Dual tone multifrequency Dual in-line package DIP switchEnabled/disabled Dual language greetings Escape from reply Error messageErrors Facility out-of-service Format Grade of service GOSGuaranteed fax Guest password Header Host switchInformation service Initialization and administration system Inads Interface Integrated services digital network IsdnIntegrated voice processing Celp IVC6 card Integrated voice response Leave word calling LWC JumperLabel Last-in/first-out Maintenance Local installationLogin Login announcement Mean time between failures Message-waiting indicator MWIMinor alarm Mode code Networking Multilingual featureModular processor data module Mpdm Multi-application platform MAP Option PasswordPassword aging Operating system OS Priority call answer Personal fax extensionPinouts Port Remote installation Random access memory RAMReboot Remote access Restart RestoreReply to sender Request to send RTS Server Simplified message service interface SmsiSecondary extension Serial transmission Switch hook flash SwitchSwitched access Switch hook Terminating resistor Telecommunications device for the deaf TDDTerminal Terminal type Undelivered message Uninterruptable power supplyUpgrade Undelete Voice mailbox VectorVoice link Voice mail Numerics Index IN-2Issue 2.0 December Issue 2.0 December 1995 IN-3 IN-4Issue 2.0 December Issue 2.0 December 1995 IN-5