Re: [Fed-Talk] Proposed Interim Leopard Benchmark
Re: [Fed-Talk] Proposed Interim Leopard Benchmark
- Subject: Re: [Fed-Talk] Proposed Interim Leopard Benchmark
- From: Todd Heberlein <email@hidden>
- Date: Mon, 29 Oct 2007 09:03:59 -0700
Attached is a draft of a very basic leopard security benchmark. I'm
very interested in comments.
First comment, please send as a PDF file instead of Word. Apple's
Pages is still not 100% compatible with Word.
Sections 1.6.28, and 1.7.1 – 1.7.3 on auditing and IDS will not be
applicable until Apple releases the Common Criteria tools along with
BSM auditing for Leopard.
This is a pretty extensive list. Any idea how long it takes to carry
out all these steps?
Given that there is very little evidence of security problems with OS
X in the wild, it might be hard to justify to the average system
administrator the Return On Investment for all these steps and the
removal of many capabilities. For example, using FileVault for
laptops is easier to justify (since they are frequently lost or
stolen) than using FileVault on a desktop in a relatively secure
environment, especially when I have heard too many stories of people
having problems with FileVault.
A tool to automate this and/or validate its status would be nice.
Todd
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden