Setting a Secure Default Policy
One of the results of the Trustworthy Computing initiative is that Microsoft products embrace a set of strategies called SD3+C, a term coined by the Secure Windows Initiative team. SD3+C stands for "secure by design, secure by default, secure in deployment and communications."
A product is secure by design when the overall design of a system takes security seriously. You can take several steps to accomplish this, such as security training for all personnel, adhering to design and coding guidelines, and developing regression tests for all previously fixed vulnerabilities.
A product is secure by default if it is secure enough out of the box. This goal can be achieved by taking steps such as these:
Do not install a complete ...
Get Microsoft® Office SharePoint® Server 2007 Administrator's Companion now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.