Establishing a Security Framework
For a standalone Linux system, or a home system that you occasionally connect to the Internet, the security policy can be just a listing of the Internet services that you want to run on the system and the user accounts that you plan to set up on the system. For any larger organization, you probably have one or more Linux systems on a LAN connected to the Internet, preferably through a firewall. In such cases, thinking of computer security across the entire organization systematically is best.
The link for this article located at CertCities is no longer available.