Security Configuration Guides (Applications)

NSA develops and distributes configuration guidance for a wide variety of software, both open source and proprietary. We strive to provide NSA customers and the software development community the best possible security options for the most widely used products. NSA does not favor or promote any specific software product or business model. Rather, we promote enhanced security. NOTE: NSA does not intend to publish a separate security guide for Microsoft Exchange 2003 beyond what was produced as a cooperative effort between the vendor and the security community. The “High” security settings in the Center for Internet Security (CIS) “Exchange Server 2003 Benchmark” track closely with the security level historically represented in the NSA guidelines. It is our belief that this benchmark establishes the latest best practices for securing the product and recommend that traditional customers of our security recommendations use the CIS Exchange benchmark when securing Exchange Server 2003.