[Fed-Talk] Please help (NISPOM Compliance)
[Fed-Talk] Please help (NISPOM Compliance)
- Subject: [Fed-Talk] Please help (NISPOM Compliance)
- From: Debbie Tropiano <email@hidden>
- Date: Wed, 3 Aug 2005 17:21:08 -0500
Hello -
I posted this on Friday and have gotten no replies...
Is it even possible to meet all of the NISPOM requirements with a Mac?
Or should I just give up now and remove them from my network? Without
any assistance or pointers, that's the only option that I have left.
Debbie
----- Forwarded message from Debbie Tropiano <debbiet> -----
> Date: Fri, 29 Jul 2005 17:26:43 -0500
> From: Debbie Tropiano <debbiet>
> To: email@hidden
> Subject: NISPOM Compliance questions
>
> Hello -
>
> As I've mentioned in a previous email (from last April), I am working on
> getting our Macs to be compliant with the NISPOM Ch. 8 requirements.
> However we have a few questions about how some of the different aspects
> should be handled. We plan to run 10.3.9 for this.
>
> First off, I'm a very new to the Mac world having administered Unix
> and Linux systems for many years. I have worked with the BSD flavor
> of Unix quite a bit (SunOS, FreeBSD), but what I call the "Mac-isms"
> are all new for me. In an effort to understand them, I've read the
> "Mac OS X for Unix Geeks" book (almost cover-to-cover .. I did gloss
> over the kernel build and SW development stuff).
>
> Anyway, I've installed (but still need to figure out) the Common
> Criteria tools which I gather handles the system auditing aspect.
> We're using a custom developed server for user authentication, so
> have the password rules covered (strong passwords, expiration, etc)
> via NIS, but it doesn't handle the unsuccessful login problem.
> I've read that can be handled via PAM. Has anyone successfully
> done this? If so, what needs to be done? Is there something else
> that needs to be installed or what?
>
> Also, has anyone gotten full accreditation of their systems using
> a remote NIS server like we do. I've seen things that allude to
> using authentication from a Windows server, but that's not what
> we're running (nor do we plan to run it anytime soon).
>
> Last, the "Mac OS X for Unix Geeks" book mentions that it's possible
> to turn off NetInfo and run everything with the BSD flat files (p 47
> in chapter 3). I realize that we'd lose the use of the GUI (which I
> don't use anyway), but do you consider this a wise thing to do? Would
> going to only BSD flat files interfere with making the system NISPOM
> compliant?
>
> Any information or assistance would be greatly appreciated,
> Debbie
>
> PS No, I haven't been working on this since last April. In fact,
> it's only been this week that I've been able to spend time on it
> (and only a few days at that).
> --
> | Debbie Tropiano | email@hidden |
> | Environmental Sciences Laboratory | +1 512 835 3367 w |
> | Applied Research Laboratories of UT Austin | +1 512 835 3544 fax |
> | P.O. Box 8029, Austin, TX 78713-8029 | home email: email@hidden |
----- End forwarded message -----
--
| Debbie Tropiano | email@hidden |
| Environmental Sciences Laboratory | +1 512 835 3367 w |
| Applied Research Laboratories of UT Austin | +1 512 835 3544 fax |
| P.O. Box 8029, Austin, TX 78713-8029 | home email: email@hidden |
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden