IN THIS CHAPTER
Securing servers and farms
Securing client communications
This chapter discusses how to secure Office Server. We have all seen the high-profile cases in the press when hackers steal digital information. Typically, the stories have been about personal information theft that involves credit card and social security numbers. When you consider the type of information that is stored in a collaborative content management environment like SharePoint, unauthorized access could be devastating to an organization.
This chapter provides an overview of the types of threats to be aware of and the available countermeasures to those threats. It is organized into three sections that focus on securing servers, clients, and content.
It would be remiss to begin a chapter on securing SharePoint without discussing a critical security component that is often overlooked and taken for granted — the password. As is the case with security in the physical world, most crimes are committed against persons and organizations by people we know. When administration, user, and default passwords stay the same for too long, inevitably someone with that knowledge and a grudge is going to do harm. Having a strict policy of changing passwords on a regular basis and making those passwords strong is still one of the best defenses we have against a potential security breach.
A password weakness can exist at either the Active Directory ...