Draft guidance for securing servers (NIST)

The National Institute of Standards and Technology is seeking comment on its draft guidelines for securing servers, released this week.

NIST Special Publication 800-123, “Guide to General Server Security,” makes recommendations for securing server operating systems and software in addition to maintaining a secure configuration with patches and software upgrades, security testing, log monitoring and backups of data and operating system files.