Difference between revisions of "Network Security Policy"
(policy in development) |
(→Policy: dumped content from 20161) |
||
| Line 7: | Line 7: | ||
''Body that set the policy(s) on [lists.freegeek_meeting_Minutes Date Adopted].'' | ''Body that set the policy(s) on [lists.freegeek_meeting_Minutes Date Adopted].'' | ||
* Wording of the most recent agreed upon policy - as agreed upon | * Wording of the most recent agreed upon policy - as agreed upon | ||
| + | |||
| + | from RT#20161: | ||
| + | |||
| + | - No infrastructure computer, including staff workstations/laptops, may | ||
| + | retain | ||
| + | a default or easily guessed username/password, including but not limited to | ||
| + | oem/freegeek. | ||
| + | |||
| + | - No infrastructure computer, including staff workstations, shall have | ||
| + | additional login services installed, such as ssh-server, without | ||
| + | approval from | ||
| + | the Technocrats. | ||
| + | |||
| + | - Infrastructure systems do not include computers being built and tested in | ||
| + | the Build program or systems being diagnosed and repaired in Tech Support. | ||
| + | |||
| + | - Systems running anything other than Linux OS shall be limited to the | ||
| + | wireless (insecure) network unless authorized by the Technocrats. | ||
| + | |||
| + | - No system running dhcp-server or any similar services may be connected to | ||
| + | any part of Free Geek's network without approval from the Technocrats. | ||
| + | |||
| + | - No wireless access points may be attached to Free Geek's network unless | ||
| + | approved by the Technocrats. | ||
| + | |||
==Notes== | ==Notes== | ||
Include some or all of: | Include some or all of: | ||
Revision as of 14:20, 6 November 2010
This is a page concerning a policy or procedure in development.
Once fleshed out, we'll consider it for adoption as official policy at Free Geek.
List of Policies - Policy Development
Policy
Body that set the policy(s) on [lists.freegeek_meeting_Minutes Date Adopted].
- Wording of the most recent agreed upon policy - as agreed upon
from RT#20161:
- No infrastructure computer, including staff workstations/laptops, may retain a default or easily guessed username/password, including but not limited to oem/freegeek.
- No infrastructure computer, including staff workstations, shall have additional login services installed, such as ssh-server, without approval from the Technocrats.
- Infrastructure systems do not include computers being built and tested in the Build program or systems being diagnosed and repaired in Tech Support.
- Systems running anything other than Linux OS shall be limited to the wireless (insecure) network unless authorized by the Technocrats.
- No system running dhcp-server or any similar services may be connected to any part of Free Geek's network without approval from the Technocrats.
- No wireless access points may be attached to Free Geek's network unless approved by the Technocrats.
Notes
Include some or all of:
- the current process for complying with this policy
- Related policies
- Interpretation/Implementation/Commentary
- Examples/Background/History
- Exceptions/Ramifications
- Etc...