The Ten Commandments of Computer Security
by Jay D. Dyson (with nods to Moses and the God of Abraham)

  1. Security is thy Goal. Thou shalt have no other Goals before it.

    2.
  2. Thou shalt not take the Goal of Security for granted.

    3.
  3. Thou shalt subscribe to Bugtraq and read it daily.

    4.
  4. Thou shalt honor thy OS and services with current patchlevels.

    5.
  5. Thou shalt not use weak passwords or passphrases.

    6.
  6. Thou shalt not run unnecessary or vulnerable services.

    7.
  7. Thou shalt maintain full and current backups, firewall rulesets and IDS signatures.

    8.
  8. Thou shalt not allow thine systems to be used as staging areas for attacks against thy neighbor.

    9.
  9. Thou shalt not rely on security through obscurity.

    10.
  10. Thou shalt not hoard knowledge of vulnerabilities or artifacts of intrusions.

    11.


<<