[Fed-Talk] Re: Leopard Security Config Document?
[Fed-Talk] Re: Leopard Security Config Document?
- Subject: [Fed-Talk] Re: Leopard Security Config Document?
- From: Peter Link <email@hidden>
- Date: Thu, 25 Oct 2007 09:33:27 -0700
Allan,
I also forwarded this to the fed-talk list. I believe Apple
Security reads that list more often than the doe-mac list.
I would hope we could start with the NSA-approved Tiger
client&server security configuration documents and just get an
addendum from Apple on Leopard. Most of the Tiger settings can still
be used but I know Apple added some interesting new features* that
will require additional control.
Of course, the Leopard Server addendum will be larger because
of the expanded features.
At the same time, we need to remind Apple that the emerging
SCAP and FDCC standards will impact all of us and providing resources
to get on the bandwagon right now can only help (they are beginning
to work the SCAP issue). Providing SCAP schema to automatically
configure and validate the configuration will go a long way towards
meeting our increasing C&A requirements.
*Remote Desktop through NAT'd routers using .mac names scares me
At 10:18 AM -0600 10/25/07, Allan Marcus wrote:
hello,
Does any have, or plan to have, an interim Leopard security
configuration guideline document that can be shared? People around
my org would like to use the OS soon, but we are restricting it
until we have a security doc.
If worse comes to worse, I will spend next week writing one, but if
someone else already has one, then we can get started sooner.
---
Thank you,
Allan Marcus
Central Software and Development Team (CSD)
Departmental Computing Group (CTN-1)
Computing, Telecommunications, and Networking (CTN) Division
Los Alamos National Laboratory
505-667-5666
email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Doe-mac mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden
--
Peter Link
Cyber Security Analyst
Cyber Security Program
Lawrence Livermore National Laboratory
PO Box 808, L-315
Livermore, CA 94550
email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden