O'Reilly logo

SSCP® Systems Security Certified Practitioner All-in-One Exam Guide by Darril Gibson

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Understanding Configuration Management

Configuration management is the practice of ensuring that systems are configured with security in mind and that configuration is tightly controlled. Many organizations use configuration management to ensure that systems are configured with a secure baseline. For example, servers start with similar system configurations that make them more secure from the default configuration. Specific types of servers (such as web servers or application servers) can then deviate from this configuration based on individual needs.

FIPS Pub 200 was mentioned previously as a standard that requires minimum accounting requirements for federal agencies. It also lists minimum requirements for configuration control, as follows: ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required