Re: DOD 5200.28-STD capable OS?

• Previous message: Security Alert: "SSRT3512 Potential vulnerability in hp jetdirect 310x"
• Next in thread: phn@icke-reklam.ipsec.nu: "Re: DOD 5200.28-STD capable OS?"
• Reply: phn@icke-reklam.ipsec.nu: "Re: DOD 5200.28-STD capable OS?"
• Reply: chris@nospam.com: "Re: DOD 5200.28-STD capable OS?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: Jim Nugent <nuge@execpc.com>
Date: Wed, 12 Mar 2003 09:34:44 -0600

On Mon, 17 Feb 2003 15:50:43 GMT, in <nx74a.140184$tq4.4415@sccrnsc01> "Tony"
<tony@null.com> wrote:

>If memory serves me right the C2 tool is in the windows resource kit.
>
>"Black_Ice" <root@localhost.localdomain> wrote in message
>news:pan.2003.02.07.23.15.47.493141@localhost.localdomain...
>> Here is something else to note. While I was in the military we used the
>> C2 Certification standard. Different operating systems, Windows Based,
>> Linux, and Unix are given a C2 configuration rating. This rating
>> determined how secure an operating system was.
>>
>> One funny thing was, we used a C2 configuration tool to make Windows C2
>> complient. But it turn out wondows (NT 4.0) was only C2 complient if it
>> was off the network. So if you applied every C2 policy in the program, it
>> would take the computer offline :-)

This seems strange. I would think that a Windows NT 4 workstation would be more
secure if it had to authenticate to a Domain Controller than if were
stand-alone. Generally if the authentication data is on the box, anyone with
physical access can breach the security. Or am I misunderstanding what C2
Security means?

----
Jim

• Previous message: Security Alert: "SSRT3512 Potential vulnerability in hp jetdirect 310x"
• Next in thread: phn@icke-reklam.ipsec.nu: "Re: DOD 5200.28-STD capable OS?"
• Reply: phn@icke-reklam.ipsec.nu: "Re: DOD 5200.28-STD capable OS?"
• Reply: chris@nospam.com: "Re: DOD 5200.28-STD capable OS?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages RE: protect MS Windows 95/98/Me ... tech savvy individuals, bypassing those policies ... Microsoft products) does not exist on Windows 9x ... > There is no security features in win9x OS. ... > operating systems. ... (Security-Basics) RE: protect MS Windows 95/98/Me ... as FoolProof can help make Win9x much more secure, ... There is no security features in win9x OS. ... there is no way of securing these operating systems. ... The solution is to upgrade to windows 2k or XP, ... (Security-Basics) RE: protect MS Windows 95/98/Me ... Subject: protect MS Windows 95/98/Me ... as FoolProof can help make Win9x much more secure, ... There is no security features in win9x OS. ... there is no way of securing these operating systems. ... (Security-Basics) RE: protect MS Windows 95/98/Me ... set restrcitive policies dependent on whatever ADM you use. ... Group Policies from within Windows components. ... There is no security features in win9x OS. ... there is no way of securing these operating systems. ... (Security-Basics) RE: protect MS Windows 95/98/Me ... Subject: protect MS Windows 95/98/Me ... as FoolProof can help make Win9x much more secure, ... There is no security features in win9x OS. ... there is no way of securing these operating systems. ... (Security-Basics)