On Unix security mistakes
by Anton Chuvakin
Related link: http://blogs.zdnet.com/Murphy/?p=525
I love those "security mistakes" papers (I've written a few myself) and here is a fun one specifically on Unix. "The four most common Unix security mistakes" by Paul Murphy covers "four worst security strategies affecting Unix deployment in business and government."
Here they are:
#1: Using Windows to administer Unix
#2: Abandoning minimalism for convenience
#3: Failing to practice preventative management
#4: Focusing where the risk isn't
You can also see my comments about it here.