[45178] in North American Network Operators' Group
RE: Network Security Policies
daemon@ATHENA.MIT.EDU (Steve Smith)
Mon Jan 21 12:33:41 2002
content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Date: Mon, 21 Jan 2002 11:32:39 -0600
Message-ID: <FBCFA6583C88244DB2B9CA2D5494B5125478A7@MEMMAILCLUSTER1.se.freeliant.net>
From: "Steve Smith" <ssmith@freeliant.com>
To: "Hauser, Dewitt C, IV (Clint), SOBUS" <dchauser@att.com>,
<nanog@nanog.org>
Errors-To: owner-nanog-outgoing@merit.edu
This may or may not help.
http://net-services.ufl.edu/~security/security-links.html
Steve
-----Original Message-----
From: Hauser, Dewitt C, IV (Clint), SOBUS [mailto:dchauser@att.com]
Sent: Monday, January 21, 2002 11:13 AM
To: 'nanog@nanog.org'
Subject: Network Security Policies
At the moment, we're firming up our policy on access to Networking
Devices
and the like. In support of this, I'm looking for any links to white
papers
or other such sources that discuss/support the following things:
- Limiting the number of people with access
- Scheduled password change/rotation
- Password change when someone with access leaves
I'm going to be doing research on this to drag things up myself, but I
figured I would put this out here to ask to provide some narrowing down
of
the search and speeding it up.
Thanks in advance.
--
Clint Hauser
AT&T Solutions
