Best Practices checklists

Michael_Dillon4 · June 10, 2010, 4:05pm

I expect that the collected members of this list could do a good job
of defining some network security practices checklists. Now that NANOG
has been spun out as an independent entity, I would hate to see it
become just another conference organizer. In the recent past many
professions have learned how valuable a simple checklist is in
preventing errors and ensuring that work adheres to a certain
standard.

So I am suggesting that NANOG take on the task of compiling and
publishing checklists for various areas of network operations. We
could have a NANOG wiki where people can publish, and work over,
suggestions for checklist topics and content. Then at the conferences,
a BOF-style meeting could hash out the official published versions.

We could have an interesting debate on whether or not this would make
a difference and whether or not NANOG should take on this role. But I
hope that we are now at a point where we see that network sloppiness
and insecurity are becoming such major issues that action is needed.
Let's act first, and evaluate the usefulness of the work, later.

--Michael Dillon

David_Meyer · June 10, 2010, 4:12pm

This is in large part what Aaron is trying to organize. There is
a track on this topic on Monday afternoon. Please see

http://nanog.org/meetings/nanog49/abstracts.php?pt=MTU2NyZuYW5vZzQ5&nm=nanog49

Thnx,

Dave

kris_foster · June 10, 2010, 4:14pm

This is a good topic for nanog-futures and not the main list since it's about the organization.

Kris

Valdis_Kletnieks · June 10, 2010, 8:33pm

Already done for some stuff: http://www.cisecurity.org

You disagree with the content or choices, feel free to join in and help

(Full disclosure: I'll take partial blame for the Solaris, AIX, and
Linux benchmark documents...)