Vulnerability Assessment of a EAL 4 system

From: <castellan2004-fd@xxxxxxxxx>
Date: Wed, 1 Nov 2006 02:12:25 -0800 (PST)

I am looking at a Linux server which has been
accredited as a EAL4 system by IBM. During the
assessment, I was looking for standard Linux
protections like iptables, ssh etc. On this server,
there is no iptables.

Regardless, I would like to know how to evaluate a EAL
4 system. What do you need to look for in the EAL 4
system in production that could become vulnerable?

Thank you in advance for any help.

Follow-Ups:
- Re: Vulnerability Assessment of a EAL 4 system
  - From: shashi
- Re: Vulnerability Assessment of a EAL 4 system
  - From: terry white
- RE: Vulnerability Assessment of a EAL 4 system
  - From: Stong, Ian

Next by Date: RE: Vulnerability Assessment of a EAL 4 system
Next by thread: RE: Vulnerability Assessment of a EAL 4 system
Index(es):
- Date
- Thread

Relevant Pages

RE: IPTables and forward
... >Subject: IPTables and forward ... >Connection: From a Linux Server to a Remote Unix Server using Frame Relay ...
(RedHat)
Vulnerability Assessment of a EAL 4 system
... I am looking at a Linux server which has been ... protections like iptables, ssh etc. ... EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE ... The NSA has designated Norwich University a center of Academic Excellence ...
(Security-Basics)
Vulnerability Assessment of a EAL 4 system
... I am looking at a Linux server which has been ... protections like iptables, ssh etc. ... Cenzic Hailstorm finds vulnerabilities fast. ...
(Pen-Test)
Re: RH9 behind a Microsoft ISA server?
... Run RH9 on wireless laptop behind a Linux server with iptables as ... firewall. ...
(linux.redhat)