On Sun, 21 Apr 1996, Russ wrote:
> No flames please, this information is provided to make it easier for folks
> to read for themselves Microsoft's position with respect to C2.
>
> To view Microsoft's official information regarding NT and its C2
> evaluation, go to
> http://www.microsoft.com/ntserver/ttsecur.htm
Since this C2 evaluation currently applies only to the base NT O/S not
connected to a network of any kind, it really has no relevance here,
since, by implication, a firewall system *IS* connected to a network.
In any event, the configuration of a system as performed by the system
administrator has more to do with security than any kind of certification.
In order to properly configure and maintain a secure system, you *MUST*
understand how that system works and unless you are able to transfer
knowledge from previous systems that you have worked with, this is
something that takes most people years to learn.
I think there are very few people in the world who have enough experience
with NT to be able to configure and operate it in a secure manner just
because it's only been in production use for a couple of years.
Michael Dillon Voice: +1-604-546-8022
Memra Software Inc. Fax: +1-604-546-3049
http://www.memra.com E-mail: michael @
memra .
com
References:
|
|
