AW: Writing Security Policies

From: Meidinger Chris (chris.meidinger_at_badenit.de)
Date: 09/08/03

  • Next message: Jay Woody: "RE: ICMP (Ping)" 
    To: 'Al Cook' <cookas@msn.com>
Date: Mon, 8 Sep 2003 19:22:04 +0100

    Look for a book from New Riders Press called 'Writing Security Policies,'
    it's really a gem.

    Chris Meidinger

    badenIT GmbH
    System Support

    Tel. +49 761 279 2280
    Fax. +49 761 279 2200

    Tullastrasse 70
    79108 Freiburg
    Deutschland

    -----Ursprüngliche Nachricht-----
    Von: Al Cook [mailto:cookas@msn.com]
    Gesendet: Montag, 8. September 2003 14:21
    An: security-basics@securityfocus.com
    Betreff: Writing Security Policies

    I'm doing some work on security policies and effectively have to write one
    from scratch for a company. Are there any good resource out there that
    anyone can recommend. I have seen books that can be bought with 1000's of
    templates and mission statement etc, are these worth the money? The company
    is based in the UK, will templates written for US based companies be
    acceptable (with some amendments) s or should I be looking for ones geared
    to the UK only? Any help appreciated.

    Thanks, Al

    _________________________________________________________________
    Express yourself with cool emoticons - download MSN Messenger today!
    http://www.msn.co.uk/messenger

    ---------------------------------------------------------------------------
    Captus Networks
    Are you prepared for the next Sobig & Blaster?
     - Instantly Stop DoS/DDoS Attacks, Worms & Port Scans
     - Precisely Define and Implement Network Security
     - Automatically Control P2P, IM and Spam Traffic
    FIND OUT NOW - FREE Vulnerability Assessment Toolkit
    http://www.captusnetworks.com/ads/42.htm
    ----------------------------------------------------------------------------

    ---------------------------------------------------------------------------
    Captus Networks
    Are you prepared for the next Sobig & Blaster?
     - Instantly Stop DoS/DDoS Attacks, Worms & Port Scans
     - Precisely Define and Implement Network Security
     - Automatically Control P2P, IM and Spam Traffic
    FIND OUT NOW - FREE Vulnerability Assessment Toolkit
    http://www.captusnetworks.com/ads/42.htm
    ----------------------------------------------------------------------------

  • Next message: Jay Woody: "RE: ICMP (Ping)"

    Relevant Pages

    • Re: pop3 antivirus check
      ... How about telling them no since it is a security risk and note that in your ... As a solution if you do want to allow POP and HTTP based email for users I ... acces pop3 servers in Internet via pop3 protocol. ... Captus Networks ...
      (Security-Basics)
    • RE: pop3 antivirus check
      ... TCSE: Trend Certified Security Expert ... Subject: pop3 antivirus check ... As a solution if you do want to allow POP and HTTP based email for users ... Captus Networks ...
      (Security-Basics)
    • RE: Certification Advice
      ... have the CISSP as a basis in order to even sign up for them. ... > CISSP certification is a good one to have in the security scene. ... > a) What are good certifications to get, which will help to get me closer ... > Captus Networks ...
      (Security-Basics)
    • RE: Windows Server 2003
      ... Security Editor, eWEEK.com ... The shutdown information service can be turned off so you ... I found myself shutting down my server quite ... >> Captus Networks ...
      (Security-Basics)
    • RE: what is this?
      ... Captus Networks - Integrated Intrusion Prevention and Traffic Shaping ... - Ensure Reliable Performance of Mission Critical Applications ... - Precisely Define and Implement Network Security and Performance Policies ...
      (Incidents)