Re: Classification of Security Risks: Critical, High, Medium, Low and Warning
- From: martin <usenet@xxxxxxxxxxx>
- Date: Fri, 30 Dec 2005 18:44:57 +0000
dfox138 wrote:
If backup tapes are not serialized, what type of risk would it be? Is it high, medium or low? (If backup tapes are not serialized, the administrator or an auditor could not account if any destroyed, retired, in-use, off-site storage backup tapes are missing.)
If a server is not hardened or locked down according to industry best practice, what type of risk would it be? Is it high, medium, or low?
If there is no documented disaster recovery plan, what type of risk would it be? Is it high, medium, or low?
three thoughts come to mind...
1 - do your own homework 2 - pay for a security consultant to help you out 3 - go and do a training course
We charge very reasonable rates :) .
- References:
- Classification of Security Risks: Critical, High, Medium, Low and Warning
- From: dfox138
- Re: Classification of Security Risks: Critical, High, Medium, Low and Warning
- From: jKILLSPAM . schipper
- Re: Classification of Security Risks: Critical, High, Medium, Low and Warning
- From: dfox138
- Classification of Security Risks: Critical, High, Medium, Low and Warning
- Prev by Date: Re: Safe way to list passwords on a computer
- Next by Date: an interesting take on the 0-day exploit
- Previous by thread: Re: Classification of Security Risks: Critical, High, Medium, Low and Warning
- Next by thread: an interesting take on the 0-day exploit
- Index(es):
Relevant Pages
|
|
