[BBLISA] Desktop policies and UNIX-ish operating systems
Tal Cohen
tcohen at sitespect.com
Fri Jan 29 07:07:59 EST 2010
That would depend on what types of compliance you are trying to meet.
For example, PCI compliance requires periodic virus scans be performed on systems that are prone to virus attacks. This pretty much excludes all MAC and *NIX systems.
At the same time, there are also differentiations in PCI for system types. Mobile devices (laptops, pda's etc) are treated differently from a firewall perspective.
The bottom line is that there is no one standard. Rather, organizations seem to develop policies based on the business needs that they are trying to meet.
Tal
-----Original Message-----
From: bblisa-bounces at bblisa.org [mailto:bblisa-bounces at bblisa.org] On Behalf Of Edward Ned Harvey
Sent: Friday, January 29, 2010 5:41 AM
To: 'Patrick Cable'; seph
Cc: bblisa at bblisa.org
Subject: Re: [BBLISA] Desktop policies and UNIX-ish operating systems
> > I'd ask a different question -- How are your policies for these
> machines
> > different than your policies for other desktops? (ie: why are you
> > special casing windows?)
>
> It's not a matter of windows being "special cased" -- windows (and
> osx) have already been dealt with policy wise.
I'd like to reiterate this question, because I don't think you answered the
heart of the question - for curiosity - I am curious what policies are being
created, that need to distinguish between windows and non-windows? For
example, the no porn policy surely applies to both. The ethics and data
privacy policy applies to both.
So what policies are there, that only apply to windows or non-windows?
_______________________________________________
bblisa mailing list
bblisa at bblisa.org
http://www.bblisa.org/mailman/listinfo/bblisa
More information about the bblisa
mailing list