All,
I've been looking for a high level security checklist from an
authoritative source.
I've got checklists from the various vendors, and developed my own list of
items
to check on, but I'm looking for an authoritative source that would cover
the high
level items, before you ever get to the server level. Such a list would
cover such
items like:
- Password policy
- Network Security policy
- Proper use policy
- Policy on attaching modems to company machines
- Audits to verify compliance with above policies
I'd expect that this checklist would be a couple of pages long with some
subsets
under the top level areas, but not deal with operating system specific
issues.
I'd appreciate if anyone can point me to a site or book that I can find this
from.
Thanks
Don
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
