[Fed-Talk] Re: Security Configuration Guide - 2nd Edition
[Fed-Talk] Re: Security Configuration Guide - 2nd Edition
- Subject: [Fed-Talk] Re: Security Configuration Guide - 2nd Edition
- From: "Shawn A. Geddis" <email@hidden>
- Date: Mon, 19 Jan 2009 10:21:14 -0500
On Jan 19, 2009, at 2:20 AM, Taylor Armstrong wrote: Thanks Shawn,
Do you know if there is a summary of differences between this 2nd edition and the original? Skimming through it quickly, I don't see a change list.
thanks,
The 2nd Edition has minor corrections (most notably just in describing and clarifying key points) throughout the document along with expanding the firewall ruleset examples. This was not an overhaul, but rather a polish on the initial release.
We plan to slightly expand and enhance the guidance with respect to CLI and MCX starting with the Snow Leopard releases.
In like manner, we are also working with NIST/MITRE on the generation of the CCEs (Configuration Change Enumerators) corresponding to each of the atomic changes noted within the Guides. Once the CCEs are determined and published to the NVD, all S*CAP tools can properly draw all three data feeds from the NVD (CVE & CPE data feeds for Apple Products already exist at NVD). - Shawn
_____________________________________________________
Shawn Geddis - Security Consulting Engineer - Apple Enterprise |
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden