Secure networking standards
- Systems and Network Security policy || procedure
- HIPAA Best Practices
- OS recommendations
- Principles for protecting Yale's data
- Security Position on File System Mounting
General Windows tools
- MS Windows Product Lifecycle Dates (includes products for which MS no longer provides security patches)
- PEEKER toolkit produces a comprehensive report of running processes, ports, and network connections. Instructions are available for burning to CD and using the toolkit to find and remove malware from an infected machine. (NetID authentication required for access).
- IIS (Microsoft Internet Information Server) Security
- Microsoft IIS Security Tool -- URLScan Can be used on Windows NT4.0/2000/XP Web servers running IIS 4.0, 5.0 or 5.1.
- IIS Lockdown Tool
- Database and SQL Server Security - Administering SQL Server Managing Security
- Microsoft SQL Server and Microsoft Data Engine ship with a null default password on the administrative account sa. If the system administrator does not set the password, the system may be vulnerable to attack.
- Microsoft Baseline Security Analyzer (MBSA) || HFNetChkPro HFNetChkPro
- Microsoft Security Bulletin Search Tool
- Microsoft Security Tool Kit: Guides, Updates, and Tools
- MS-SQL Critical Update Wizard (microsoft.com)
- MS Office Update: use IE/Internet Explorer as your browser (microsoft.com)
- SANS/FBI Top 20 List (Most Critical Internet Security Vulnerabilities)
Windows XP
Windows Vista
- Security Guide (microsoft.com)
Windows Server 2003
UNIX/Linux
- OS update options – RHEL/Fedora/SGI/Solaris (YSM)
- Network security checklist for Unix Workstations ITS ISO)
- Red Hat (RHEL & Fedora) Linux (YaleU WSS)
- apt-rpm, Maintain RPMs recommended by WSS
- Standard RedHat Enterprise Linux Advanced Server ( RHEL- AS) install
- RedHat Linux 9
- Legacy RedHat Linux
- Nodetools: cluster management software - Execute commands and move files to and from clusters of machines.
- Red Hat-specific Notes - security and networking notes specific to Red Hat.
- UNIX Configuration Guidelines (CERT)
- Benchmark and Scoring/Scanning Tools for Solaris (Center for Internet Security)
- Silicon Graphics: SGI security (sgi.com)
- Trusted BSD project (trustedbsd.org)
- Security-Enhanced Linux (NSA)
- Apache HTTP Server Security Tips (apache.org)
MacOS X
- MacOSX-L (Yale University)
- Security Configuration Guide for Mac OS X 10.3 (nsa.gov)
- Mac/Apple Issues (SANS.org)
- SANS/FBI Top 20 List (Most Critical Internet Security Vulnerabilities)
- Apple Security || software updates (apple.com)
- Developer Security
- Introduction to Security for Web Develper
- Security Configuration Guide (10.4 or later)
- Server Security Configuration Guide (10.4 or later)
- Security: Mac OS X and UNIX
- Smart Card Setup Guide
- MacSecurity.org || SecureMac.com
- MacSSH.com: sFTP and SSH clients for Classic MacOS and carbonized MacOSX
Home/remote computing
- Secure & private connections to Yale while traveling
- Updating your operating system
- Home Network Security (from CERT)
X-platform/Misc
- Open Web Application Security Project (OWASP)
Top 10 web application vulnerabilities & how to protect against them. - Mobile technology security
- Vendors connecting to a Yale system must have a valid Yale netID. A form is available. (3501 FR.20 Non-Employee Data Collection Form)
- INtrusion Recovery Guidelines (CERT)
- IT Pro Security Zone (Microsoft)
- CERT/CC Current Activity: Regularly updated summary of the most frequent, high-impact types of security incidents and vulnerabilities.
- Oracle security || alerts || identity management
- NGSSquirrel for Oracle: a vulnerability assessment scanner and security manager specifically developed to scan Oracle Database Servers
- Oracle Security Handbook [by Marlene L. Theriault and Aaron Newman; ISBN:0072133252 - Osborne ORACLE Press Series - August 2001]
- SANS/FBI Top 20 List (Most Critical Internet Security Vulnerabilities)
