Errata

Evaluation CD May Not Be Bootable Some of the Windows 2000 Server Evaluation Edition CDs included with this book may not be bootable. In order to install Windows 2000 Server using the non-bootable Evaluation CD, you must create Windows 2000 Server Setup Boot Disks. For instructions on how to create the Windows 2000 Server Setup Boot Disks, please refer to the ADVSRV3.TXTfile located on the Evaluation CD: "To start Setup for a new installation by starting the computer from floppy disks 1. Locate both the Windows 2000 Setup floppy disks and the Windows 2000 CD-ROM. 2. With your computer turned off, insert the first Setup disk into drive A of your computer. 3. Turn on your computer. 4. Follow the Setup instructions. You can create a set of floppy disks by using the Makeboot utility in the Bootdisk folder of the Windows 2000 Setup CD-ROM. You can create the Setup disks from a computer running any version of Windows or MS-DOS. You will need four blank, formatted, 3.5-inch, 1.44-MB floppy disks. Label them Setup Disk One, Setup Disk Two, Setup Disk Three, and Setup Disk Four. To create Setup disks 1. Insert a blank, formatted, 3.5-inch, 1.44-MB disk into the floppy disk drive. 2. Insert the Windows 2000 CD-ROM into the CD-ROM drive. 3. Click Start, and then click Run. 4. In the Open box, type d:ootdiskmakeboot a: (where d: is the drive letter assigned to your CD-ROM drive), and then click OK. 5. Follow the screen prompts."

Incorrect URL In Note


On page 72, in the Note near the middle of the page, the URL www.ieft.org/rfc is referenced. It should be "ietf" rather than "ieft".

Change:

www.ieft.org/rfc

To:

www.ietf.org/rfc

Inaccurate Statement About Remote Administration Mode On page 131, in the second paragraph from the bottom, change: "Second, only members of the Administrators group are allowed to connect to the terminal server." To: "Second, by default, only members of the Administrators group are allowed to connect to the terminal server."

Inaccurate Statement About Remote Administration Mode


On page 132, in the second paragraph from the bottom, change:

"This restricts Terminal Services to only members of the Administrators domain local group."

To:

"This, by default, restricts Terminal Services to only members of the Administrators domain local group."

Graphics Users Permissions Should Be "Change" On page 180, in the third bulleted item, the Graphics Users permissions should be "Change" instead of "Read". Change: "Graphics Users: Read" To: "Graphics Users: Change"

Missing Checkmark In Table 6.1


On page 183, in Table 6.1, under the "Write" column, there should be a checkmark for the "Create Files/Write Data" special permission.

Correction To Question 1 On page 233, in question 1, Change: "...meet the requirements to hide the Control Panel for all network user." To: "...meet the requirements to hide the Entire Network icon."

Ocfiles.inf Should Be Ocfiless.inf


On page 252, in the second bulleted item from the bottom,

Change:

"...Ocfiles.inf"

To:

"...Ocfiless.inf"

Incorrect Description For None and Notify Rights On page 310, in the first bulleted item under "Restricting Management to Specific SNMP Communities", the explanation for None or Notify is incorrect. Change: "None or Notify. The SNMP agent won't discard any requests from management stations in the community where the right is assigned." To: "None or Notify. The SNMP agent does not process the request. When the agent receives an SNMP message from a management system in this community, it discards the request and generates an authentication trap."

"Original" Should Be "New" In Figure 12.10


On page 440, in Figure 12.10, in the first box of "Signed portion of the packet",

Change:

"Original IP Header"

To:

"New IP Header"

Corrections For Entries In Table 12.6 On page 449, in Table 12.6, the third entry in the left column should be "Negotiate Security" instead of "Negotiate". The fourth entry in the left column should be "Allow Unsecured Communication With Non-IPSec-Aware Computer", instead of "Enable Fallback To No Security". Change the third and fourth entry in the left column from: Negotiate Enable Fallback To No Security To: Negotiate Security Allow Unsecured Communication With Non-IPSec-Aware Computer

3DES Should Be DES In Figure 12.9


On page 452, in Table 12.9, in the last row,

Change:

"3DES"

To:

"DES"

Incorrect URL In Note On page 489, in the Note near the middle of the page, the URL www.ieft.org/rfc is referenced. It should be "ietf" rather than "ieft". Change: www.ieft.org/rfc To: www.ietf.org/rfc

Incorrect URL In Note


On page 492, in the Note near the top of the page, the URL www.ieft.org/rfc is referenced. It should be "ietf" rather than "ieft".

Change:

www.ieft.org/rfc

To:

www.ietf.org/rfc

Invalid Question On page 534, under "Designing Remote Access for Laptops Running Windows NT 4.0 Workstation", question 2 is invalid. Please ignore question 2.

Table 14.15 Change Internal To External


On page 572, the title for Table 14.15 should say External instead of Internal.

Change:

"Internal Firewall Rules to Restrict DNS Usage"

To:

"External Firewall Rules to Restrict DNS Usage"

"Passive" Should Be "Active" On pages 575, 576, 577, and 618, multiple references to "passive FTP clients" should be changed to "active FTP clients". On page 575, in the third paragraph under "Securing FTP Traffic", Change: "Some FTP clients, known as passive FTP clients, require..." To: "Some FTP clients, known as active FTP clients, require..." On page 576, in the paragraph under Table 14.19, Change: "The last two packet filters enable the FTP server to establish connections to passive FTP clients." To: "The last two packet filters enable the FTP server to establish connections to active FTP clients." On page 576, in the Note paragraph, Change: "The packet filters listed in Table 14.19 assume that passive FTP clients..." To: "The packet filters listed in Table 14.19 assume that active FTP clients..." On page 577, in the first bulleted item, Change: "If passive FTP clients exist" To: "If active FTP clients exist" On page 577, in the paragraph under Table 14.20, Change: "The last two packet filters allow the MFFTP server to initiate data transfers with passive FTP clients." To: "The last two packet filters allow the MFFTP server to initiate data transfers with active FTP clients." On page 618, in the last bulleted item, Change: "Passive FTP clients require data transfers from..." To: "Active FTP clients require data transfers from..."

Private Should Be Public


On page 604, in question 4,

Change:

"If private network users were allowed to..."

To:

"If public network users were allowed to..."

Table 15-18 Correction For "Log Date" Entry On page 642, in Table 15.8, the eleventh entry down is "Log Date." Change the parenthetical information immediately following it from "LogTime" to "LogDate."

Incorrect URL


The second bullet on page 714 references an incorrect URL. The URL should begin with "news" rather than "nntp" and there should be no "/" at the end of the path.

Change:

nntp://msnews.microsoft.com/microsoft.public.win2000.security/

To:

news://msnews.microsoft.com/microsoft.public.win2000.security

Incorrect OU On page 720, in question 2 under "Designing an OU Structure for Group Policy Deployment", change: "London Computers" To: "London ComputersDesktops"

Mixed Mode Should Be Native Mode
On page 727, under "Chapter 5", in question 4,



Change:



"Domain local groups are shared among domain controllers only when in mixed mode"



To:



"Domain local groups are shared among domain controllers only when in native mode"

Incomplete Answer To Question 4 On page 736, at the top of the page, the answer to question 4 from page 237 does not list the local computer as a point of Group Policy implementation. Add the following additional bulleted item to the end of the list:The computer's local GPOMicrosoft Press is committed to providing informative and accurate books. All comments and corrections listed above are ready for inclusion in future printings of this book. If you have a later printing of this book, it may already contain most or all of the above corrections.