[3536] in WWW Security List Archive
Re: Checklist/FAQ
daemon@ATHENA.MIT.EDU (Michael Brennen)
Thu Nov 14 12:30:54 1996
Date: Thu, 14 Nov 1996 08:00:24 -0600 (CST)
From: Michael Brennen <mbrennen@fni.com>
To: Dave Wreski <tel1dvw@is.ups.com>
cc: www-security <www-security@ns2.rutgers.edu>
In-Reply-To: <Pine.GSO.3.93.961112122800.14991D-100000@butthead>
Errors-To: owner-www-security@ns2.rutgers.edu
*************************************************************************
The Australian Computer Emergency Response Team has developed a checklist
which assists in removing common and known security vulnerabilities under
the UNIX Operating System. It is based around recently discovered
security vulnerabilities and other checklists which are readily available
(see references in Appendix C).
This document can be retrieved via anonymous ftp from:
ftp://ftp.auscert.org.au/pub/auscert/papers/unix_security_checklist
For information about detecting or recovering from an intrusion, see the
CERT security information document which can be retrieved via anonymous
ftp from:
ftp://ftp.auscert.org.au/pub/cert/tech_tips/security_info
*************************************************************************
This is from a header on a checklist from AUSCERT. It is not Web
specific, but may help lock down your hosts.
-- Michael
On Tue, 12 Nov 1996, Dave Wreski wrote:
>
> Hi all. I am looking for the FAQ for this group. Specifically, I am
> interested in a checklist of things to do to check the security of our web
> server/web pages.
