This chapter discussed the various security requirements that apply to operating systems in general and Microsoft Windows and Unix systems in particular. The key concepts identified in this chapter were as follows:
It is essential to maintain systems regularly. Operating system vendors periodically release vital patches, service packs, and hot fixes.
Strong password policies protect the integrity of an installation.
Microsoft Windows contains a variety of tools that are vital to the security practitioner, including the Event Viewer and Active Directory Users and Computers tool.
Unix operating systems come in a variety of forms, but all are capable of detailed access control and logging activity.