Re: EXTERNAL:Re: [Fed-Talk] DoD consensus security configuration
Re: EXTERNAL:Re: [Fed-Talk] DoD consensus security configuration
- Subject: Re: EXTERNAL:Re: [Fed-Talk] DoD consensus security configuration
- From: "Dan O'Donnell" <email@hidden>
- Date: Mon, 21 Jun 2010 16:57:24 -0400
- Thread-topic: EXTERNAL:Re: [Fed-Talk] DoD consensus security configuration
On 6/21/10 12:40 PM, "Peter Link" <email@hidden> wrote:
> It would be appropriate if NSA posted a short announcement on their site that
> the 10.6 client guide was available on Apple's site. There continue to be
> approving agencies that refuse to look at Apple's website for anything. It's
> only "real" if it's posted on the NSA web site. Our cyber security policy
> states configuration guides must be on third-party sites like NSA, NIST, CIS,
> and DISA. Apple isn't included so it "doesn't count." NSA added the blurb for
> 10.5 so all we're asking for is NSA to do the same thing for 10.6.
Agreed. There is total credibility with CSAs if the security configuration
guide is from NSA, or on NSA's site, or otherwise explicitly vetted by NSA.
>From the vendor - not so much.
Would be nice to see some DISA STIGs too.
__________________________________________________________________________
This email message is for the sole use of the intended recipient(s) and
may contain confidential information. Any unauthorized review, use,
disclosure or distribution is prohibited. If you are not the intended
recipient, please contact the sender by reply email and destroy all copies
of the original message.
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden