Surf these sites: ACM Crossroads Security feature articles -- ACM Crossroads is the student magazine of the Association for Computing Machinery. Crossroads has published several articles about computer security, as listed in this index. Baseline Software, Inc. -- Information Security Policies Made Easy by Charles Cresson Wood, CISA, CISSP, noted international information security consultant and researcher. Cipher -- the Electronic Newsletter of the IEEE Computer Society Technical Committee on Security and Privacy. Collection of Documents at Rootshell -- Every day people ranging from security consultants, Fortune 500 companies, and the U.S. Department of Defense make it a habit to visit our site. Designing Secure Software -- A methodology for avoiding the security holes that drive you mad, an article from SunWorld. How to find security holes -- Written as a primer for people participating in the Linux Security Audit project, which is intended to find security holes so they can be fixed before people use them to break into things. ICSA Information Security Magazine -- ICSA an independent organization offering objective views and opinions on computer security issues. Improve computer security through knowledge sharing, information dissemination, and security products certification. Introduction to Network Security -- A gentle introduction to the complex topic of network security. Geared especially toward those new to security, including end users and management. Linux Administrator''s Security Guide -- A comprehensive security guide aimed at Linux amdinistrators and users, available online in Acrobat PDF format, by Kurt Seifried. Linux Security -- This document is a general overview of security issues that face the administrator of Linux systems. It covers general security philosophy and a number of specific examples of how to better secure your Linux system from intruders. Network Security Library -- Windows, unix, netware, WWW, firewalls, intrusion detection systems, security policy, books, papers, articles, etc. Site Security Handbook (RFC 2196) -- This handbook is a guide to developing computer security policies and procedures for sites that have systems on the Internet. The purpose of this handbook is to provide practical guidance to administrators trying to secure their information and services. Source Code Review Guidelines -- Before programs may be placed in the firewall system, the source code is reviewed for deficiencies in the areas of security, reliability and operations. This document is dual purposed; first it is a guideline and checklist for security groups performing the code review; second, it is an attempt to provide development teams with information about what we look for in a review. The Orange Book Site -- Contains a summary of the DoD''s "Trusted Computer System Evaluation Criteria" (Orange Book) - if you''ve ever wondered what a C2 security rating is, this is the place to find out. Writing Safe Setuid Programs -- This is a collection of papers on writing safe setuid programs by Matt Bishop.
Help build the largest human-edited
directory on the web.