On Feb 21, 2005, at 1:27 PM, Everett Littles wrote:
Just curious. What are people doing out there to perform security
audits on X Server? Any tools? Best practices?
I haven't really seen an OS X specific resources on this subject
other than book OS X Server Maximum Security.
Apple finally released their port of the Solaris BSM last week. That
will probably cover any auditing needs you have.
I think he meant a "security evaluation" or "audit" as in the sense
of regulatory compliance and auditing that should be performed on
every system at least once a year.
In this case the poster needs to be a bit less vague in what he's
looking to achieve. But his written security policy should define
what he needs to
And if you don't have a written security policy this is the first
thing an auditor is going to flag. It's a drop dead issue as w/o one
you have no definition of risks, or what you're attempting to
protect, from whom, and what level of access (and by whom) is
permissible.
iWiring designs and supports Internet systems and networks based on
Mac OS X, unix, and Open Source application technologies and offers
24x7, guaranteed support to registered clients, at affordable rates.
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Macos-x-server mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/macos-x-server/email@hidden
