Section 7.7 File Server and Database Policy

Previous page
Table of content
Next page
   

7.7 File Server and Database Policy

These systems are critical, and steps need to be taken to protect them. Privileged access, for example, root, to them should be limited to a small number of people that maintain them. Services that have a history of security problems, such as sendmail, DNS, and CGIs should not be allowed.

If these systems are only for internal use, their access by outside systems should be blocked by a firewall. If the data is so confidential that most people in the company should not see it, such as human resources data, financial information (either the company's or its clients), or medical information, its unencrypted data should be allowed only over separate networks. This is to prevent sniffing by the curious.

       
    Top

    Previous page
    Table of content
    Next page
    Real World Linux Security Prentice Hall Ptr Open Source Technology Series
    Real World Linux Security Prentice Hall Ptr Open Source Technology Series
    ISBN: N/A
    EAN: N/A
    Year: 2002
    Pages: 260
    BUY ON AMAZON
    Secure Programming Cookbook for C and C++: Recipes for Cryptography, Authentication, Input Validation & More
    Developing Tablet PC Applications (Charles River Media Programming)
    Service-Oriented Architecture (SOA): Concepts, Technology, and Design
    Ruby Cookbook (Cookbooks (OReilly))
    Oracle SQL*Plus: The Definitive Guide (Definitive Guides)
    Python Standard Library (Nutshell Handbooks) with
    flylib.com © 2008-2017.
    If you may any questions please contact us: flylib@qtcs.net
    Privacy policy