|[Home] [Credit Search] [Category Browser] [Staff Roll Call]||The LINUX.COM Article Archive|
|Originally Published: Saturday, 25 March 2000||Author: Derrick H. Lewis|
|Published to: news_enhance_security/Security Tips||Page: 1/1 - [Printable]|
Your Security Policy (in a nutshell)
When making your security policy, it is 'key' to make sure that the staff has 'say' in the development of the policy. Make sure that you make the policy as clear and discreet as possible (ex. Naming which services are supposed to be public and note those services which are accessible from the internet, but are not intended for internal use only). Overall, your Security Policy should readable and explicable and a security policy is not good if user input is not involved.