Firewall Wizards mailing list archives
RE: Security Policy
From: "Januszewski, Joseph" <jjanusze () exchange nih gov>
Date: Thu, 23 Oct 1997 08:36:34 -0400
On Mon, Oct 20, 1997 at 03:20:59PM +0200, Wolfgang 'Robyn' Braun wrote:
[...] I get the feeling that something very basic is missing, and last night i found out what it is: A Security Policy! [...] I know what should be allowed across the firewall and i know how to implement it (actually i already did it on my private subnet) - but i really don't know how to write a security policy.
Is there some sort of guideline on how to write a security policy?
RFC 1244, Site Security Handbook also try: Internet Security Policy: A Technical Guide at http://csrc.nist.gov/isptg/ _________________________________________________________________ U.S. Department of Health and Human Services National Institutes of Health Joseph J. Januszewski, III, PEIT Computer Specialist Division of Computer Research and Technology 12 South Drive (301) 435-5575 Bldg 12A, Rm 4020, MS 5607 Bethesda, Maryland 20892 jjanusze () exchange nih gov _________________________________________________________________ "If we knew what we were doing, it would not be called research, would it?" - Albert Einstein
Current thread:
- Security Policy Wolfgang 'Robyn' Braun (Oct 21)
- Re: Security Policy Fred Donck (Oct 22)
- Re: Security Policy Damir Rajnovic (Oct 22)
- Re: Security Policy Paul Pomes (Oct 23)
- Re: Security Policy Adam Shostack (Oct 22)
- Re: Security Policy Bennett Todd (Oct 22)
- Re: Security Policy Joseph S. D. Yao (Oct 23)
- Re: Security Policy Joseph S. D. Yao (Oct 23)
- <Possible follow-ups>
- Re: Security Policy Bill_Royds (Oct 22)
- RE: Security Policy Januszewski, Joseph (Oct 23)
- Re: Security Policy H. Morrow Long (Oct 23)
- RE: Security Policy McKenna, Joe (Oct 23)
- Re: Security Policy Bennett Todd (Oct 24)