You might want to look here:
for sample policies. SANS is a security training/certification organization, associated with GIAC (Global Incident Analysis Center) who are heavily and directly involved with the state if system and internet security. They also publish a "Top 20" vulnerability list.
Last Wiki Answer Submitted: December 16, 2004 9:12 am by Poppaman0 pts.