Where should one go to be kept updated on all of the security flaws/problems floating around? Specially in the era of open source where we tend to use libraries from everywhere.
+1
A:
- Defense Information Systems Agency - Information Assurance Support Environment
- Defense Information Systems Agency - Security Technical Implementation Guides
- Defense Information Systems Agency - Security Readiness Review Evaluation Scripts
I find these links useful as a defense contractor, but they might have use for civilian applications as well. Look at the SRR scripts as a way to detect possible vulnerabilities on a system you are trying to secure.
Benjamin Borden
2008-12-05 17:03:26