IT Baseline Protection Manual - The Information Warfare Site

Safeguard Catalogue - Hardware & Software Remarks
____________________________________________________________________ .........................................
S 4 Safeguard Catalogue - Hardware & Software
S 4.1 Password protection for IT systems
S 4.2 Screen lock
S 4.3 Periodic runs of a virus detection program
S 4.4 Locking of floppy disk drive
S 4.5 Logging of PBX administration jobs
S 4.6 Audit of the PBX configuration (target/performance
reconciliation)
S 4.7 Change of preset passwords
S 4.8 Protection of the PBX operator's console
S 4.9 Use of the security mechanisms of X Windows
S 4.10 Password protection for PBX terminals
S 4.11 Screening of PBX interfaces
S 4.12 Disabling of unneeded user facilities
S 4.13 Careful allocation of identifiers
S 4.14 Mandatory password protection under UNIX
S 4.15 Secure log-in
S 4.16 Restrictions on access to accounts and/or terminals
S 4.17 Blocking and deletion of unnecessary accounts and
terminals
S 4.18 Administrative and technical means to control access to
the system-monitor and single-user mode
S 4.19 Restrictive allocation of attributes for UNIX system
files and directories
S 4.20 Restrictive allocation of attributes for UNIX user files
and directories
S 4.21 Preventing unauthorised acquisition of administrator
rights
S 4.22 Prevention of loss of confidentiality of sensitive data in
the UNIX system
S 4.23 Secure invocation of executable files
S 4.24 Ensuring consistent system management
S 4.25 Use of logging in UNIX systems
S 4.26 Regular security checks of the UNIX system
S 4.27 Password protection in laptop PCs
____________________________________________________________________ .........................................
IT-Baseline Protection Manual: Oktober 2000