NIST has a collection of security checklists <http://checklists.nist.gov> for configuring various hardware and software to be secure. The ones for OS X that I read are well written, quite comprehensive, providing a nice summary of each problem and specific instructions for correction. The ones for Windows were less specific, but had a sophisticated view of the need for "balancing security, functionality, and usability." Generally the ones in PDF format were good. Others, typically the ones in Excel format, looked like brain dumps, quite inscrutable.
Comparing the checklists for OS X to the ones for Windows demonstrates how much harder it is to secure Windows. The OS X checklist was much shorter and got into things that the Windows checklist did not get into. ************************************************************************* ** List info, subscription management, list rules, archives, privacy ** ** policy, calmness, a member map, and more at http://www.cguys.org/ ** *************************************************************************
