IT Baseline Protection Manual - The Information Warfare Site
19.12.2012 Views
Share Embed Flag

IT Baseline Protection Manual - The Information Warfare Site

IT Baseline Protection Manual - The Information Warfare Site

IT Baseline Protection Manual - The Information Warfare Site

SHOW MORE
SHOW LESS
ePAPER READ
DOWNLOAD ePAPER
iwar.org.uk

Create successful ePaper yourself

Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.

START NOW

Safeguard Catalogue - Organisation Remarks<br />

____________________________________________________________________ .........................................<br />

S 2.179 Procedures controlling the use of fax servers<br />

Initiation responsibility: Head of <strong>IT</strong> Section, <strong>IT</strong> Security Management<br />

Implementation responsibility: Administrator of the fax server, fax mail<br />

centre<br />

To ensure the smooth operation of the fax server(s), procedures must be put in<br />

place covering the points set out below.<br />

1. Specification of responsibilities<br />

A fax server consists of an <strong>IT</strong> system, the operating system installed on it and<br />

the fax server application. <strong>The</strong>n there are the fax clients of the users.<br />

Accordingly the maintenance for the fax server must be organised. Depending<br />

on the existing organisational structure, persons who will have responsibility<br />

for these areas must be appointed. In some cases this can mean that each of<br />

these areas is supported by different administrators. For example, the<br />

operating system could be administered by the organisational unit which is<br />

also responsible for administration of the other <strong>IT</strong> systems. On the other hand,<br />

the fax application should be administered in the fax mail centre. Depending<br />

on the type of use, the mail centre is also responsible for ensuring that<br />

incoming fax transmissions are forwarded to the responsible person.<br />

Responsibility for issuing access authorisations for the fax server should lie in<br />

the mail centre as well. Other tasks include resetting passwords and<br />

configuration of new users. Thus it is especially important to define the tasks<br />

and responsibilities of the fax mail centre (see S 2.180 Setting up a fax mail<br />

centre).<br />

2. Definition of the user community<br />

<strong>The</strong> group of persons who are authorised to use the fax server must also be<br />

specified. Authorisations for incoming fax transmissions could include the<br />

following:<br />

- Read rights,<br />

- Forwarding rights<br />

- Delete rights.<br />

Authorisations for outgoing fax transmissions could include the following:<br />

- Send rights,<br />

- Suspend rights,<br />

- Delete rights,<br />

- right to alter transmission options.<br />

<strong>The</strong>se classes of authorisation should if possible be granted only to user<br />

groups and only in exceptional cases to individual users, as is customary in<br />

administration generally (see also S 2.30 Provisions governing the<br />

configuration of users and user groups).<br />

____________________________________________________________________ .........................................<br />

<strong>IT</strong>-<strong>Baseline</strong> <strong>Protection</strong> <strong>Manual</strong>: Oktober 2000

logo

products

Resources

Company

Terms of service
Privacy policy
Cookie policy
Cookie settings
Imprint
Change language
Made with love in Switzerland
© 2024 Yumpu.com all rights reserved

Hooray! Your file is uploaded and ready to be published.

Saved successfully!

Ooh no, something went wrong!