IT Baseline Protection Manual - The Information Warfare Site

Safeguard Catalogue - Communications Remarks
____________________________________________________________________ .........................................
Request operation. The filters must be distinguishable both by individual users
(by means of strong authentication) and by computers.
It must be possible to distinguish the type of data transmitted and to search
special file types for specific information. Should other processes be necessary
for processing the data transmitted (e.g. an external viewer or a shell), it must
be possible to let the user confirm implementation of these processes first.
Other services: X11, BSD ”r services”, NFS, NIS, TFTP
These services should not be used through a firewall (see also T 4.11 Lack of
authentication possibilities between NIS Server and NIS Client, T 4.12 Lack of
authentication possibilities between X Server and X Client and Safeguards
- S 5.17 Use of the NFS security mechanisms
- S 5.18 Use of the NIS security mechanisms
- S 5.19 Use of the sendmail security mechanisms
- S 5.20 Use of the security mechanisms of rlogin, rsh and rcp
- S 5.21 Secure use of telnet, ftp, tftp and rexec
____________________________________________________________________ .........................................
IT-Baseline Protection Manual: Oktober 2000