Taking the initiative with open source security strategies and policies

How can I go about proactively setting up solid open source security strategies and policies?

An open source security policy should be set up no differently than any other security strategy and policy. Document

the environment, assess the risks, design and implement controls to mitigate the risks, and monitor and actively manage your environment.

You should take into consideration the issues I raised in this answer to another question. These may reveal some additional risks. A risk that is present for open source software, but possibly not found in commercial software, is a potential lack of support or patches to fix issues.

This was first published in November 2005

Dig deeper on Linux system security best practices

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.



Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: