Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Management
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Development Environment Best Practices

from [alan_willcox] Network Security [Permanent Link]
Subject: Re: Development Environment Best Practices
Date: Wed, 15 Jun 2005 13:36:12 -0400 
The ISF's Standard of Good Practice (free at 
http://www.isfsecuritystandard.com/) includes section SD14 that goes into 
detail on development environments.

-- Alan





"Joshua Berry" <jberry@PENSON.COM>
06/14/2005 09:22 AM

 
        To:     <security-management@securityfocus.com>
        cc: 
        Subject:        Development Environment Best Practices





Does anyone on this list have any resources for Development environment
best practices.  I am looking for something that explains the need to
separate the production, testing, and development environments.  I also
need something explaining correct processes for developing and
implementing code (such as: developers should not administer the
production servers they install code on, or developers should not have
full admin rights on all boxes, etc).

Any help would be greatly appreciated.  Thanks.

 
Josh Berry | CISSP GCIA 
Information Security
214-765-1296
 
-------------------------------------------------------------------- 
If you spend more on coffee than on IT security, you will be hacked. 
What's more, you deserve to be hacked. 
     -- (Former) White House Cybersecurity adviser Richard Clarke
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Information Risk Management, alan_willcox
Next by Date:  RE: EU and information security, Somun, Hrvoje (HR - Zagreb)
Previous by Thread:  Development Environment Best Practices, Joshua Berry
Next by Thread:  EU and information security, Zaklina Supica
Indexes:  [Date] [Thread] [Top] [All Lists]