Unix-Sec1-121302 MSE安全攻防资料 checklist.docVIP

UNIX SECURITY CHECKLIST Version 3, Release 1.1 13 December 2002 DISA FIELD SECURITY OPERATIONS This page is intentionally left blank. TABLE OF CONTENTS 1 Introduction 1-1 1.1 Organization of the Checklist 1-1 1.2 General Information 1-2 1.3 Severity Codes 1-2 1.4 Screen Sort Order Codes 1-2 1.5 Referenced Documents 1-3 1.6 UNIX Checklist Changelog 1-4 2 SRR RESULTS REPORT 2-1 3 SYSTEM CHECK PROCEDURES 3-1 APPENDIX A. FILE TEMPLATE A-1 APPENDIX B. ESM SECURITY POLICY B-1 APPENDIX C. SRR COMMAND-SCRIPTS C-1 This page is intentionally left blank.Introduction Organization of the Checklist The UNIX Security Checklist is composed of three major sections and four appendices. The organizational breakdown proceeds as follows: Section 1 Introduction This section contains summary information about the sections and appendices that comprise the UNIX Security Checklist, and defines its scope. Supporting documents consulted are listed in this section. Section 2 SRR Results Report This section is the matrix that allows the reviewer to document vulnerabilities discovered during the Security Readiness Review (SRR) process. The entries in this table, sorted by Potential Discrepancy Item (PDI), are mapped to procedures—referenced by paragraph number—in Section 3, System Check Procedures. Section 3 System Check Procedures This section documents the procedures that instruct the reviewer on how to perform an SRR. Each procedure maps to a PDI tabulated in Section 2, SRR Results Report. Appendix A File Template This appendix documents the allowed file ownership and permissions. Appendix B ESM Security Policy This appendix documents the security policy used by OmniGuard/Enterprise Security Manager (ESM) to perform an SRR. Appendix C SRR Command-Scripts This appendix documents the command-scripts used to perform an SRR. General Information Security Readiness Review (SRR) personnel are not authorized to make changes to any system other than changes require