Securing Sakai -- Ensuring a secure Sakai instance
- Former user (Deleted)
See Tools->Attachments to download slides
Abstract:
Takeaways from the presentation:
1. Sakai has a policy regarding the handling of security related issues
2. There are people who are actively engaged with security related issues [identifying them by name/institution, if not in person]
3. Here's what to do if you come across a security related issue
4. There have been active, dedicated efforts related to testing and improving the security profile of the Sakai product (i.e. it's not all just reactive effort)
5. If you're running in Production you need to know who is in the Security group and consider allocating resources to get involved with it
6. If you do nothing else here are things to think about/test in your own instance (the Top 10 list, most of which will be configuration and process issues)