[unisog] Developing "Security Guidelines" email

Robert Ono raono at ucdavis.edu
Mon Feb 28 19:02:32 GMT 2005

Several University of California campuses are developing or have 
developed policy and standards for minimum network security standards. 
UC Davis is approaching the policy and standards as a method by which to 
foster development of the campus security program. The draft policy and 
standards can be found at  http://security.ucdavis.edu/policy_review.cfm.


Cooper F. Nelson wrote:

> You might want to look at what Berkeley is doing with their minimum 
> network security standards.
> http://ist-socrates.berkeley.edu:2002/MinStds/
> http://socrates.berkeley.edu:2002/MinStds/AppA.min.htm
> http://socrates.berkeley.edu:2002/MinStds/impl.guide.html
> -Cooper
> Joshua Beeman wrote:
>> On occasion we have receive an email from an IT group on campus that 
>> says:
>> "Help!  We have a machine that we've wiped & built from scratch 3 
>> times, and it keeps getting hacked.  What should we do?"
>> The problem from our perspective in issuing general guidelines to 
>> this type of request is that every school or center tends to be set 
>> up slightly different from the next.  That said however, we still 
>> hope to be able to provide a list of things to consider that will be 
>> helpful, stimulate new thought, etc.
>> Towards this end we came up with the list below.  Many of the items 
>> are biased towards the MS Windows OS.   If you maintain a similar 
>> list and/or have any feedback or comments, they would be greatly 
>> appreciated.
>> Thanks very much,
>> joshb
>> ********************
> _______________________________________________
> unisog mailing list
> unisog at lists.sans.org
> http://www.dshield.org/mailman/listinfo/unisog

Robert A. Ono, CISSP
Information Technology Security Coordinator
Office of the Vice Provost
Information and Educational Technology
University of California, Davis
(530) 757-5795

More information about the unisog mailing list