IT Baseline Protection Manual - The Information Warfare Site

Non-Networked Systems and Clients IT-Security Management
_________________________________________________________________________________________
- S 4.9 (1) Use of the security mechanisms of X Windows
- S 4.19 (1) Restrictive allocation of attributes for UNIX system files and directories
- S 4.20 (2) Restrictive allocation of attributes for UNIX user files and directories
- S 4.21 (1) Preventing unauthorised acquisition of administrator rights
- S 4.22 (3) Prevention of loss of confidentiality of sensitive data in the UNIX system
- S 4.23 (3) Secure invocation of executable files
Logging / Security checks
- S 4.25 (1) Use of logging in UNIX systems
- S 4.26 (2) Regular security checks of the UNIX system
- S 4.40 (2) Preventing unauthorised use of computer microphones
- S 4.106 (2) Activation of system logging
Communication
- S 5.17 (1) Use of NFS security mechanisms
- S 5.18 (1) Use of NIS security mechanisms
- S 5.19 (1) Use of the sendmail security mechanisms
- S 5.20 (1) Use of the security mechanisms of rlogin, rsh and rcp
- S 5.21 (1) Secure use of telnet, ftp, tftp and rexec
- S 5.34 (2) Use of one-time passwords (optional)
- S 5.35 (1) Use of UUCP security mechanisms
- S 5.36 (2) Encryption under UNIX and Windows NT (optional)
- S 5.64 (2) Secure Shell
- S 5.72 (1) Deactivation of unnecessary network services
Contingency Planning
- S 6.20 (2) Appropriate storage of backup data media
- S 6.21 (2) Backup copy of the software used
- S 6.22 (2) Sporadic checks of the restorability of backups
- S 6.31 (2) Procedural patterns following a loss of system integrity
- S 6.32 (1) Regular data backup
_________________________________________________________________________________________
IT-Baseline Protection Manual: Otober 2000
�