MCSE Training Kit (Exam 70-220): Designing Microsoft® Windows® 2000 Network Security

Errata for MCSE Training Kit (Exam 70-220): Designing Microsoft® Windows® 2000 Network Security




The errata list is a list of errors and their corrections that were found after the product was released. If the error was corrected in a later version or reprint the date of the correction will be displayed in the column titled "Date Corrected".

The following errata were submitted by our customers and approved as valid errors by the author or editor.

Color Key: Serious Technical Mistake Minor Technical Mistake Language or formatting error Typo Question Note Update



Version Location Description Submitted By Date Submitted Date Corrected
Other Digital Version
CD-ROM

Evaluation CD May Not Be Bootable Some of the Windows 2000 Server Evaluation Edition CDs included with this book may not be bootable. In order to install Windows 2000 Server using the non-bootable Evaluation CD, you must create Windows 2000 Server Setup Boot Disks. For instructions on how to create the Windows 2000 Server Setup Boot Disks, please refer to the ADVSRV3.TXTfile located on the Evaluation CD: "To start Setup for a new installation by starting the computer from floppy disks 1. Locate both the Windows 2000 Setup floppy disks and the Windows 2000 CD-ROM. 2. With your computer turned off, insert the first Setup disk into drive A of your computer. 3. Turn on your computer. 4. Follow the Setup instructions. You can create a set of floppy disks by using the Makeboot utility in the Bootdisk folder of the Windows 2000 Setup CD-ROM. You can create the Setup disks from a computer running any version of Windows or MS-DOS. You will need four blank, formatted, 3.5-inch, 1.44-MB floppy disks. Label them Setup Disk One, Setup Disk Two, Setup Disk Three, and Setup Disk Four. To create Setup disks 1. Insert a blank, formatted, 3.5-inch, 1.44-MB disk into the floppy disk drive. 2. Insert the Windows 2000 CD-ROM into the CD-ROM drive. 3. Click Start, and then click Run. 4. In the Open box, type d:ootdiskmakeboot a: (where d: is the drive letter assigned to your CD-ROM drive), and then click OK. 5. Follow the screen prompts."

Microsoft Press  May 06, 2010 
Printed
Page 72

Incorrect URL In Note On page 72, in the Note near the middle of the page, the URL www.ieft.org/rfc is referenced. It should be "ietf" rather than "ieft". Change: www.ieft.org/rfc To: www.ietf.org/rfc

Microsoft Press  Jul 13, 2010 
Printed
Page 131

Inaccurate Statement About Remote Administration Mode On page 131, in the second paragraph from the bottom, change: "Second, only members of the Administrators group are allowed to connect to the terminal server." To: "Second, by default, only members of the Administrators group are allowed to connect to the terminal server."

Microsoft Press  May 06, 2010 
Printed
Page 132

Inaccurate Statement About Remote Administration Mode On page 132, in the second paragraph from the bottom, change: "This restricts Terminal Services to only members of the Administrators domain local group." To: "This, by default, restricts Terminal Services to only members of the Administrators domain local group."

Microsoft Press  Jul 13, 2010 
Printed
Page 180

Graphics Users Permissions Should Be "Change" On page 180, in the third bulleted item, the Graphics Users permissions should be "Change" instead of "Read". Change: "Graphics Users: Read" To: "Graphics Users: Change"

Microsoft Press  May 06, 2010 
Printed
Page 183

Missing Checkmark In Table 6.1 On page 183, in Table 6.1, under the "Write" column, there should be a checkmark for the "Create Files/Write Data" special permission.

Microsoft Press  Jul 13, 2010 
Printed
Page 233

Correction To Question 1 On page 233, in question 1, Change: "...meet the requirements to hide the Control Panel for all network user." To: "...meet the requirements to hide the Entire Network icon."

Microsoft Press  May 06, 2010 
Printed
Page 252

Ocfiles.inf Should Be Ocfiless.inf On page 252, in the second bulleted item from the bottom, Change: "...Ocfiles.inf" To: "...Ocfiless.inf"

Microsoft Press  Jul 13, 2010 
Printed
Page 310

Incorrect Description For None and Notify Rights On page 310, in the first bulleted item under "Restricting Management to Specific SNMP Communities", the explanation for None or Notify is incorrect. Change: "None or Notify. The SNMP agent won't discard any requests from management stations in the community where the right is assigned." To: "None or Notify. The SNMP agent does not process the request. When the agent receives an SNMP message from a management system in this community, it discards the request and generates an authentication trap."

Microsoft Press  May 06, 2010 
Printed
Page 440

"Original" Should Be "New" In Figure 12.10 On page 440, in Figure 12.10, in the first box of "Signed portion of the packet", Change: "Original IP Header" To: "New IP Header"

Microsoft Press  Jul 13, 2010 
Printed
Page 449

Corrections For Entries In Table 12.6 On page 449, in Table 12.6, the third entry in the left column should be "Negotiate Security" instead of "Negotiate". The fourth entry in the left column should be "Allow Unsecured Communication With Non-IPSec-Aware Computer", instead of "Enable Fallback To No Security". Change the third and fourth entry in the left column from: Negotiate Enable Fallback To No Security To: Negotiate Security Allow Unsecured Communication With Non-IPSec-Aware Computer

Microsoft Press  May 06, 2010 
Printed
Page 452

3DES Should Be DES In Figure 12.9 On page 452, in Table 12.9, in the last row, Change: "3DES" To: "DES"

Microsoft Press  Jul 13, 2010 
Printed
Page 489

Incorrect URL In Note On page 489, in the Note near the middle of the page, the URL www.ieft.org/rfc is referenced. It should be "ietf" rather than "ieft". Change: www.ieft.org/rfc To: www.ietf.org/rfc

Microsoft Press  May 06, 2010 
Printed
Page 492

Incorrect URL In Note On page 492, in the Note near the top of the page, the URL www.ieft.org/rfc is referenced. It should be "ietf" rather than "ieft". Change: www.ieft.org/rfc To: www.ietf.org/rfc

Microsoft Press  Jul 13, 2010 
Printed
Page 534

Invalid Question On page 534, under "Designing Remote Access for Laptops Running Windows NT 4.0 Workstation", question 2 is invalid. Please ignore question 2.

Microsoft Press  May 06, 2010 
Printed
Page 572

Table 14.15 Change Internal To External On page 572, the title for Table 14.15 should say External instead of Internal. Change: "Internal Firewall Rules to Restrict DNS Usage" To: "External Firewall Rules to Restrict DNS Usage"

Microsoft Press  Jul 13, 2010 
Printed
Page 575 - 577 And 618

"Passive" Should Be "Active" On pages 575, 576, 577, and 618, multiple references to "passive FTP clients" should be changed to "active FTP clients". On page 575, in the third paragraph under "Securing FTP Traffic", Change: "Some FTP clients, known as passive FTP clients, require..." To: "Some FTP clients, known as active FTP clients, require..." On page 576, in the paragraph under Table 14.19, Change: "The last two packet filters enable the FTP server to establish connections to passive FTP clients." To: "The last two packet filters enable the FTP server to establish connections to active FTP clients." On page 576, in the Note paragraph, Change: "The packet filters listed in Table 14.19 assume that passive FTP clients..." To: "The packet filters listed in Table 14.19 assume that active FTP clients..." On page 577, in the first bulleted item, Change: "If passive FTP clients exist" To: "If active FTP clients exist" On page 577, in the paragraph under Table 14.20, Change: "The last two packet filters allow the MFFTP server to initiate data transfers with passive FTP clients." To: "The last two packet filters allow the MFFTP server to initiate data transfers with active FTP clients." On page 618, in the last bulleted item, Change: "Passive FTP clients require data transfers from..." To: "Active FTP clients require data transfers from..."

Microsoft Press  May 06, 2010 
Printed
Page 604

Private Should Be Public On page 604, in question 4, Change: "If private network users were allowed to..." To: "If public network users were allowed to..."

Microsoft Press  Jul 13, 2010 
Printed
Page 642

Table 15-18 Correction For "Log Date" Entry On page 642, in Table 15.8, the eleventh entry down is "Log Date." Change the parenthetical information immediately following it from "LogTime" to "LogDate."

Microsoft Press  May 06, 2010 
Printed
Page 714

Incorrect URL The second bullet on page 714 references an incorrect URL. The URL should begin with "news" rather than "nntp" and there should be no "/" at the end of the path. Change: nntp://msnews.microsoft.com/microsoft.public.win2000.security/ To: news://msnews.microsoft.com/microsoft.public.win2000.security

Microsoft Press  Jul 13, 2010 
Printed
Page 720

Incorrect OU On page 720, in question 2 under "Designing an OU Structure for Group Policy Deployment", change: "London Computers" To: "London ComputersDesktops"

Microsoft Press  May 06, 2010 
Printed
Page 727

Mixed Mode Should Be Native Mode On page 727, under "Chapter 5", in question 4, Change: "Domain local groups are shared among domain controllers only when in mixed mode" To: "Domain local groups are shared among domain controllers only when in native mode"

Microsoft Press  Jul 13, 2010 
Printed
Page 736

Incomplete Answer To Question 4 On page 736, at the top of the page, the answer to question 4 from page 237 does not list the local computer as a point of Group Policy implementation. Add the following additional bulleted item to the end of the list:The computer's local GPOMicrosoft Press is committed to providing informative and accurate books. All comments and corrections listed above are ready for inclusion in future printings of this book. If you have a later printing of this book, it may already contain most or all of the above corrections.

Microsoft Press  May 06, 2010