MURDOCH     INDEX     SEARCH     PEOPLE  
Policies Index >>  Facilities & Services >>  Information Technology >> 

MurdochNet Policy

Section 1: PREAMBLE
Section 1.1: Purpose
Section 1.2: Scope
Section 1.3: Field of Application
Section 1.4: Policy Vocabulary
Section 1.5: Key Terms
Section 2: INTRODUCTION
Section 2.1: Goals
Section 2.2: Boundary of MurdochNet
Section 2.3: Environment of MurdochNet
Section 3: CODE OF CONDUCT
Section 3.1: Servers
Section 3.2: Content
Section 3.3: Links
Section 3.4: Misconduct
Section 4: SERVER MANAGEMENT
Section 4.1: Registration of Web Servers
Section 4.2: Murdoch Sub-domains
Section 4.3: Alternate Domain Names
Section 4.4: Naming Conventions for Web Servers
Section 4.5: Availability of Web Servers
Section 4.6: Security of Web Servers
Section 4.7: Backup (Hardware, Software, Data) of Web Servers
Section 4.8: Web Server Software
Section 4.9: Responsibility for Web Servers
Section 5: CONTENT MANAGEMENT
Section 5.1: Content Categories
Section 5.2: Content Management Procedures & Practices
Section 5.3: Standards & Guidelines for Content Preparation
Section 5.4: Murdoch Conventions for Content Preparation
Section 5.5: Murdoch Guidelines for Content Preparation
Section 5.6: Applications & Tools
Section 5.7: Responsibility for Content
Section 6: LINK MANAGEMENT
Section 6.1: Permissible Links
Section 6.2: Link Validation & Checking
Section 6.3: Link Revision & Relocation
Section 6.4: Responsibility for Registered Links
Section 7: Glossary of MurdochNet Terminology
: SCHEDULES
Schedule 1: Forms
Schedule 2: Contracts
Schedule 3: Guidelines
Schedule 4: Regulations
Schedule 5: Disclaimers
Schedule 6: Roles & Responsibilities

Section 4 SERVER MANAGEMENT

Section 4.6 Security of Web Servers

Section 4.6.4 Security Guidelines for Computers Used to Run Web Servers

The University’s IT Security Manager shall make available security guidelines for computers used to run Web Servers.

The guidelines to include recommended best practices such as:

(a) no insecure telnet access to computers used to run Web Servers (ie. use ssh)

(b) replace the use of ‘remote copy’ with ‘scp’

(c) disable anonymous ftp

(d) remove the sendmail daemon

(e) prompt application of security patches to operating system, Web Server software and other software applications

(f) installation and update of virus protection software on computers used to run We Servers.

All Central MurdochNet Servers shall comply with the Security Guidelines for Computers Used to Run Web Servers.

All MurdochNet Servers and Affiliated Web Servers that are authorised to perform the role of Internet Content Host shall comply with the Security Guidelines for Computers Used to Run Web Servers.

It is recommended that all other MurdochNet Servers and Affiliated Web Servers should also comply with the Security Guidelines for Computers Used to Run Web Servers.

 

 
© 2005 Murdoch University   |   Copyright & Disclaimer   |   Privacy   |   MurdochNet Policy   |   CRICOS Code: 00125J   |   Page Info