: Jonathan Hassell
: Hardening Windows
: Apress
: 9781430200833
: 2
: CHF 29.50
:
: Informatik
: English
: 216
: Wasserzeichen/DRM
: PC/MAC/eReader/Tablet
: PDF
* Covers the Windows XP Service Pack 2, Windows Server 2003 Service Pack 1, Windows Server R2's new Security Configuration Wizard, branch-office security features, and new setup options.

* Each chapter ends with checkpoints to ensure thoroughness.

* Applicable to all current versions of Windows (NT, 2000 Pro/Server, SP Pro, and Server 2003).

* Includes automation suggestions, from deployment to rollout and beyond.



Jonathan Hassell is an author, consultant, and speaker on a variety of IT topics. His published works include RADIUS, Hardening Windows, Using Microsoft Windows Small Business Server 2003, and Learning Windows Server 2003. His work appears regularly in such periodicals as Windows IT Pro, PC Pro, and TechNet Magazine. Jonathan also speaks worldwide on topics ranging from networking and security to Windows administration. He is currently an editor for Apress, which specializes in books for programmers and IT professionals.
Contents at a Glance4
Contents6
About the Author12
About the Technical Reviewer14
Acknowledgments16
Introduction18
CHAPTER 1 Some Words About Hardening19
What Is Security?20
The Security Dilemma21
Enemies of Security22
What Windows Is Lacking22
Some General Hardening Suggestions23
Software Considerations24
Hardware and Network Considerations25
Checkpoints27
CHAPTER 2 Windows NT Security29
Windows NT System Policy Editor29
Customizing and Applying Policies to Multiple Computers30
Resolving Conflicts Between Multiple Policies31
Recommended User Policy Settings32
Extending Policies37
Passwords37
Password Policies38
Password Cracking39
Protecting User Accounts40
Registry Procedures40
Protecting the File System41
Locking Down Local Directories41
Search Paths42
Guarding Against Internet Threats43
Windows NT Port Filtering43
Protecting Against Viruses44
Assigning Rights to Users45
Granting and Revoking User Rights45
Remote Access Server Configuration48
Selecting Appropriate Communications Protocols and Methods48
Security Implications of Domains49
Checkpoints50
CHAPTER 3 Windows 2000 Security53
System Updates53
The Slipstreaming Process54
Critical Updates and Security Hotfixes55
Managing Critical Updates Across Multiple Computers55
Security Templates56
Creating a Custom Security Template58
Recommended Security Policy Settings59
User Accounts60
Local Options61
Other Security Considerations64
Windows Component Selection and Installation64
Tightening Running Services65
Checkpoints66
CHAPTER 4 Windows XP Security67
Implementing the Built-In Windows XP Firewall67
Profiles68
Configuring Through Group Policy69
The Internet Connection Firewall in XP Gold and Service Pack 169
Disabling Unnecessary Services71
Providing a Secure Configuration for Services80
Microsoft Baseline Security Analyzer Patch Check and Security Tests81
Installing Microsoft Baseline Security Analyzer81
Penetration Tests81
File System Security82
Disable Automated Logins83
Hardening Default Accounts83
Use Runas for Administrative Work84
Disable Infrared Transfers85
Using Forensic Analysis Techniques85
Checkpoints87
CHAPTER 5 Windows Server 2003 Security89
Enhancements to Security in Service Pack 189
The Security Configuration Wizard90
Installing the SCW91
Creating a Security Policy with the SCW91
The Rollback Feature98
SCW Best Practices98
Using SCW from the Command Line99
Checkpoints100
CHAPTER 6 Deploying Enterprise Security Policies103
System Policies, Group Policies, and Interaction103
Mixing Policies and Operating Systems105
Security and the Group Policy Framework107
Organized Layout of Policies108
Policy Application Precedence110
Creating Security Configuration Files110
Default Domain Policy112
Default Domain Controller Security Policies112
Troubleshooting Group Policy