U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

PUBLICATIONS

Keeping Information Technology (IT) System Servers Secure: A General Guide to Good Practices

Published

Author(s)

Shirley M. Radack

Abstract

This bulletin summarizes information disseminated in NIST Special Publication (SP) 800-123, Guide to General Server Security: Recommendations of the National Institute of Standards and Technology, which was written by Karen Scarfone and Wayne Jansen of NIST and by Miles Tracy of Federal Reserve Information Technology. The guide helps organizations select, implement and maintain security controls for their servers, such as those that provide web and email services. The bulletin summarizes the information in the guide, and covers the needed activities for implementing and maintaining the security of servers that provide services over network communications as their main function. Issues covered in the bulletin include common server vulnerabilities and threats, the requirements to protect servers, and how to install, configure and maintain secure servers through organizational efforts for careful planning and the implementation of appropriate management practices and controls.
Citation
ITL Bulletin -
NIST Pub Series
ITL Bulletin
Pub Type
NIST Pubs

Download Paper

Local Download

Keywords

Information systems security, information technology, network servers, public Web servers, server security, risk management, security controls, security management, Web applications.
Information technology

Citation

Radack, S. (2008), Keeping Information Technology (IT) System Servers Secure: A General Guide to Good Practices, ITL Bulletin, National Institute of Standards and Technology, Gaithersburg, MD, [online], https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=900179 (Accessed April 12, 2025)

Issues

If you have any questions about this publication or are having problems accessing it, please contact reflib@nist.gov.

Created October 15, 2008, Updated February 19, 2017