Security server audit is process focused to detail analyze standard of security and functionality of server.
Server audit is realized in two stages: data capture and evaluation of captured data.
Server audit data capture
We are realizing data capture using half-automated method with our own server audit tool-set. Captured informations are different in fundamentals, according to server operating system and server provided services. Set of audited informations is specified before audit, according to client request.
Evaluation of audited informations
Evaluation of audited informations is processed in SUNFLOVV by authorized expert. This stage is run from four days up to two weeks depends on information amount.
We are auditing these operating systems:
- MS Windows 2000
- MS Windows Server 2003
- MS Windows Server 2008
- FreeBSD
- OpenBSD
- NetBSD
- GNU/Linux distributions with kernel 2.4.X a 2.6.X
- SUN Solaris
- Mac OS X
Server auditing output
Server auditing output is final statement where are in detail described audited informations, identified security and configuration risks and proposed countermeasures.