http://www.techtv.com/screensavers/darktip...3587648,00.html

The links on that page go to nsa.gov which has a HUGE ass guide for lockdowns

ThinIce accurately described the guides, if not colorfully. h**p://www.nsa.gov/snac/index.html takes you straight to the guides. Be sure to go to the bottom of the page and follow the link to the "download single files" pages. They have more than just Win and Cisco guides. The Oracle 9i and MS SQL were particularly helpful.

NSA appears to have been working on a flavor of Linux they call Security Enhanced (SELinux). Looks like the source is availible for download.
h**p://www.nsa.gov/selinux/background.html[/URL]
Cheers

very interesting... but i dont think that NSA is interested in turning a computer into a fortress

It's a fairly thorough guide- It has some pretty good explanation on what's what. As well as presets that you can use.

Although I don't recco them because they're a little too strict for my likening
of course then again I didn't edit them like it said cause I'm a lazy person

Wow I am diggin these, I love checking out any governmetn standard!

thanks for the links thinice.

im going to compare how my current windows boxes are setup to how the NSA thinks they should be

Awesome PDF's There!


Great Find

I wanna test the security templates but how do i un-install them if i decide to install them. Thnx in advance

Is the setup in this guide how the NSA Setup there computers??
and thnx for the link, great guides there

welcome 2 years ago guys ...

Hello,

If anyone's interested in checking out selinux up close and personal (by that I mean ssh into the box as root) then drop me an email.

Ed

Heres some interesting reading for you as well regarding your locking down MS boxes


Windows Some of the forum may remember this, to others it may be new. Regardless there have been numerous changes as the German went with Linux staring with Munich back in 99/2000 if I recall correctly as well as this posting by the BBC back in 2002.



IBM signs Linux deal with Germany

What is equally interesting Whiskah is that MS released there source code to a foreign country. Just so happens that the person who was representing the so called security center, just happened to be a member of that countries security services, oh sorry as they said

yeah i know right.. they just now rennovated their current website on these guides... but they've hadded a few updates like the sun java plug in security which i find interesting. what's even more shocking is that top IT companies or most people in the service industry doesn't give any thought to these guides.

NSA has been working real hard to perfect SElinux. NSA also put code into the 2.6 kernel. Now SElinux is going for DOD level certification up there with Solaris

I've seen these before related to a mailing I received from the NSA directly. I am on some odd mailing lists so imagine my concern when I recieved a big manilla envelop from Ft. Mead.

They are one of the documentation sets you have to be perfectly familiar with to successfully pass the NSA Gov't Security Professional certification test. I may be off on the name of the cert itself but it's close enough.

Lots of good information but not useful in the "real world" as we don't have access to some of the underlying systems and technologies they reference from time to time.

Another great site for security guidelines are

http://csrc.nist.gov/publications/nistpubs/
http://iase.disa.mil/

Enjoy

yeah these guides aren't bad. of course these are declassified, which means they're either somewhat dated material (but still good) or in use for external computers and networks that aren't mission critical. i've been using them for years with my company. i must say, they are comprehensive... i emailed the webmaste rof that website, you can actually call the NSA and request a burnt disc of all the guides if you cannot dl them. They don't give you hard copies lol