Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Microsoft
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: What server hardening are you doing these days?

from [Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]] Network Security [Permanent Link]
Subject: Re: What server hardening are you doing these days?
Date: Thu, 10 Nov 2005 18:18:41 -0800 
Isn't that some of the same advice that got people screwed up by 05-051?

NSA recommended ACL tightening on Windows 2000.

If you follow that guidance you now must ensure that you are your own test network.

Syv Ritch wrote: 
Derick Anderson wrote:

I also stick to Microsoft best practices when it comes to Microsoft
servers, it's just safer that way. I haven't yet implemented the Windows
2003 Security guide templates (for fear of breaking our production
environment) but I plan to do that after I've taken care of some other
more basic issues (domain split, network split, user lockdown, etc.).


Maybe you should reconsider. There is lot better than MS when it comes to advising on security.

http://www.nsa.gov/snac/downloads_all.cfm

The NSA. They have both guides and templates. It actually works and is far more secure than the MS advice.


--
Letting your vendors set your risk analysis these days? http://www.threatcode.com


---------------------------------------------------------------------------
---------------------------------------------------------------------------

[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Deny Logon by Domain Admin account to specific PC's or deny to all BUT specific PC's, Hindle, Dallas
Next by Date:  RE: What server hardening are you doing these days?, Brown, Sam
Previous by Thread:  Re: What server hardening are you doing these days?, Syv Ritch
Next by Thread:  RE: What server hardening are you doing these days?, Laura A. Robinson
Indexes:  [Date] [Thread] [Top] [All Lists]