[Fed-Talk] NISPOM Compliance questions
[Fed-Talk] NISPOM Compliance questions
- Subject: [Fed-Talk] NISPOM Compliance questions
- From: Debbie Tropiano <email@hidden>
- Date: Fri, 29 Jul 2005 17:26:43 -0500
Hello -
As I've mentioned in a previous email (from last April), I am working on
getting our Macs to be compliant with the NISPOM Ch. 8 requirements.
However we have a few questions about how some of the different aspects
should be handled. We plan to run 10.3.9 for this.
First off, I'm a very new to the Mac world having administered Unix
and Linux systems for many years. I have worked with the BSD flavor
of Unix quite a bit (SunOS, FreeBSD), but what I call the "Mac-isms"
are all new for me. In an effort to understand them, I've read the
"Mac OS X for Unix Geeks" book (almost cover-to-cover .. I did gloss
over the kernel build and SW development stuff).
Anyway, I've installed (but still need to figure out) the Common
Criteria tools which I gather handles the system auditing aspect.
We're using a custom developed server for user authentication, so
have the password rules covered (strong passwords, expiration, etc)
via NIS, but it doesn't handle the unsuccessful login problem.
I've read that can be handled via PAM. Has anyone successfully
done this? If so, what needs to be done? Is there something else
that needs to be installed or what?
Also, has anyone gotten full accreditation of their systems using
a remote NIS server like we do. I've seen things that allude to
using authentication from a Windows server, but that's not what
we're running (nor do we plan to run it anytime soon).
Last, the "Mac OS X for Unix Geeks" book mentions that it's possible
to turn off NetInfo and run everything with the BSD flat files (p 47
in chapter 3). I realize that we'd lose the use of the GUI (which I
don't use anyway), but do you consider this a wise thing to do? Would
going to only BSD flat files interfere with making the system NISPOM
compliant?
Any information or assistance would be greatly appreciated,
Debbie
PS No, I haven't been working on this since last April. In fact,
it's only been this week that I've been able to spend time on it
(and only a few days at that).
--
| Debbie Tropiano | email@hidden |
| Environmental Sciences Laboratory | +1 512 835 3367 w |
| Applied Research Laboratories of UT Austin | +1 512 835 3544 fax |
| P.O. Box 8029, Austin, TX 78713-8029 | home email: email@hidden |
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden