The Security Technical Implementation Guides (STIGs) and other information-security-related guides from the NSA, previously released through the NIST website, are now available directly from DISA's public area. The STIGs, in particular, form an excellent basis for corporate technical security standards, supplementing the vendor-specific secure configuration and system hardening guides released by the likes of Microsoft, HP, CISCO etc. Their mailing list is a neat way to keep up with developments - low volume and invariably interesting.
More IT Ops, secure systems management and related links
No comments:
Post a Comment