Checklists and Resources for Setting up a Secure Server

CIS Security Configuration Benchmarks and Assessment Tools

Penn has a license that allows you to use the Center for Internet Security's automated assessment tool, in addition to using their freely-available benchmarks.

• Register here: http://benchmarks.cisecurity.org/membership/enroll/ for access to licensed tools, making sure to use your upenn.edu email address.
• Download free tools here: http://benchmarks.cisecurity.org/downloads/

In recent years Penn Information Security has provided site-licensed copies of the "Step-By-Step" Guides from the SANS Institute for securing the major operating systems, however, we no longer are licensing them. In their place we are recommending that support providers and system administrators make use of the excellent tools and checklists available from the Center for Internet Security at their website: www.cisecurity.org (see above for directions to access the Penn-licensed tools).

Last updated: Friday, February 15, 2013