Our company is building a Standard Operating Environment “gold disk” for our systems. I have been hunting around for a element-by-element list of suggested security settings in the enterprise config and machine.config. I don't think I found it yet. However, here's the list of security links I was able to search my way into. If you know of any detailed guide for security and config files, let me know!
PAG:
TechNet:
Visual Studio:
GotDotNet CLR Team:
Books:
.NET Framework Security (out of print)
Programming .NET Security (haven't read)
The .NET Developer's Guide to Windows Security