Internet Security Standards

Posted by michael on Sunday July 28, 2002 @06:30AM from the sorely-needed dept.

Aetius writes "The Center for Internet Security has released a set of security standards and tools for several operating systems. Here's the ZDNet story. I checked out the Linux standard and it is a pretty good coverage of the basics; about the only thing missing was a simple firewall treatment. I installed it on my wide-open desktop system (RH 7.3) and scored a 6.61 out of 10, which doesn't seem too bad. The scanner code isn't open source, but it's perl so you can at least look at it. You have to register to download it. If nothing else, the PDF of the standards is a good read. Enjoy."

3 of 135 comments (clear)

Min score:

Reason:

Sort:

Re:ahem by hammock · 2002-07-28 06:40 · Score: 4, Funny

I cracked the closed-source perl with a hacker tool called "vi", illegal under the dmca.
reboot? by tojabr · 2002-07-28 06:47 · Score: 2, Funny

I just looked at the linux benchmark and it states that after changing a shell variable you must reboot, what do they think it is Winblows. Oops mouse moved, time to reboot.
The standard never actually gives a 10 score. by TheMidget · 2002-07-28 10:54 · Score: 3, Funny

The best it gives is 7...
Indeed, 3 points are deducted for the severe flaw "system has a luser who blindly runs software he downloaded from the internet."