Information for System and Network Administrators

General Security Resources

• CERT Advisories Archive
• CERT Incident Notes
• CERT Steps for Recovering from a UNIX or NT System Compromise

Best Practice Documents

• How to Protect Your Computer: Guidelines for Faculty and Staff
• How to Protect Your Computer: Guidelines for Students
• Center For Internet Security Guides
• SANS S.C.O.R.E. Guides
• SANS/FBI Top Twenty Most Critical Internet Security Vulnerabilities
• Disabling Open Mail Relays (Multiple Platforms)

Unix Security

• Sun Security Coordination Team
• Sun Microsystems Security Products and Solutions
• HP Resource Center
• HP-UX Patch Database
• Tru64 Internet Security Software Download
• SGI/IRIX Security
• IBM AIX Security Patches
• Mandriva Security
• RedHat Linux Errata
• SuSE Linux Security Announcements
• Debian GNU/Linux Security Information
• FreeBSD Security Information
• OpenBSD Security Information

Microsoft and Windows Security

• Microsoft Security Home
• Microsoft Technet Security
• Microsoft Security Bulletins
• Microsoft Security Tools
• Microsoft Security Checklists
• Microsoft Security Best Practices Documents
• Microsoft's Network Security Hotfix Checker (HFNetChk)
• Windows Updates Page

Internet Information Server (IIS) is the Web and FTP server that is included with Windows NT and Windows 2000. IIS contains a number of serious security vulnerabilities, such as the ones exploited by the Code Red and Nimda worms. IIS should be disabled on all Windows systems unless it is absolutely necessary. System administrators running IIS should refer to the following resources to secure and protect their systems:

• IIS 5.0 Baseline Security Checklist
• Secure Internet Information Services 5 Checklist (longer)
• IIS 4 Baseline Security Checklist
• Microsoft IIS Lockdown Tool
• Microsoft URLScan Security Tool

Mac OSX Security

• Apple Computer Product Security Home
• Apple Security Updates
• Mac OSX Security Essentials