Non-compliant System

---

A non-compliant system is a system whose configuration is different from its secure baseline.

• vulnerability scanner is a tool that can detect non-compliant systems

A configuration baseline is a set of recommendations for deploying a computer in a hardened configuration to minimize the risk that there could be vulnerabilities.

• baselines for different operating systems and for different server and client roles
• basic principle is to reduce the system’s attack surface
  • is all the points a threat actor could try to use to infiltrate or disrupt the system