Book description
With the success of computer viruses like Slammer, security issues are now a top priority for Windows system administrators, right alongside day-to-day tasks such as setting up accounts and managing performance. If you use Windows 2003 Server at a small to medium-sized organization, or use Microsoft's Small Business Server, this thorough yet concise tutorial offers the hands-on advice you need for securing your network. Modern network operating systems include bundled services that range from traditional file and print sharing and Internet services to authentication, directory and remote access services each a potential security vulnerability as well as a capability. Securing Windows Server 2003 shows you how to put Windows security tools to work, and how to run the server's subsystems to protect users and resources. But that's just the beginning. Network security needs to be well thought-out, not treated as a fire drill when a threat occurs. This book focuses primarily on ways to plan and implement a secure operating environment. Microsoft security veteran Mike Danseglio uses real-world examples to show you how various security concepts relate to your own system, including:
File System Security
Group Policy and security templates
Running secure code
Authentication
IP security
Public Key Certificates and Public Key Infrastructure
Smart Card technology
DHCP and DNS security
Internet Information Services security
Active Directory security
Remote access security
Security audits
Sending secure email, and more
Many chapters include a debate, in which fictional protagonists discuss the pros and cons of a particular strategy or solution. These debates provide an objective look at competing methodologies, so you can select the solutions that best fit your network. Read this book cover to cover to create and implement a security plan, or use individual chapters as stand-alone lessons. Either way, Securing Windows Server 2003 will guide you safely through the morass of security threats.
Table of contents
-
Securing Windows Server 2003
- Preface
- 1. Introduction to Windows Server 2003 Security
- 2. Basics of Computer Security
- 3. Physical Security
-
4. File System Security
- Protecting Files with NTFS File Permissions
-
Protecting Data with the Encrypting File System
- How EFS Works
- Benefits of the Encrypting File System
- Drawbacks of the Encrypting File System
- Using the Encrypting File System Correctly
- Example: Ensuring New Files are Encrypted
- Example: Managing the Private Key to Ensure Maximum Protection
- Example: Using cipher.exe to Remove Old Unencrypted Data
- Example: Storing Shared Encrypted Files on a Windows Server 2003 File Server
- Configuring EFS with Group Policy
- Protecting System Information with Syskey
- Summary
-
5. Group Policy and Security Templates
- What Is Group Policy?
- How Group Policy Works
- How Do Security Templates Work?
- Using Group Policy to Enforce Security
- Using Security Templates to Deploy Secure Configurations
- Summary
- 6. Running Secure Code
- 7. Authentication
-
8. IP Security
- What Is IP Security?
- How Does IPSec Work?
- Microsoft’s Implementation of IPSec in Windows Server 2003
- Using IPSec Correctly
- Summary
-
9. Certificates and Public Key Infrastructure
- What Are Certificates?
- What Do I Do with Certificates?
- What Is a Certification Authority?
- Deciding Between Public and Private Certification Authorities
- Implementing a Public PKI
- Planning Your Private Certification Hierarchy
-
Implementing a Private Certification Hierarchy
- Create a PKI Deployment Plan
- Construct Certificate Policy and Certificate Practice Statement
- Install the Root Certification Authority
- Install Intermediate and Issuing CAs
- Configure Certificate Templates for Desired Certificates
- Configure the Issuing CA
- Configure Autoenrollment for Windows XP
- Test Desired Applications
- Maintaining Your Hierarchy
- Summary
- 10. Smart Card Technology
- 11. DHCP and DNS Security
- 12. Internet Information Services Security
-
13. Active Directory Security
- What Is Active Directory?
- Structural Components of Active Directory
- Domain Controllers
- Default Security Through GPOs
- Providing Security for Domains
- Providing Security for Forests
- Providing Security for Active Directory Objects
- Providing Security for Domain Controllers
- Summary
- 14. Remote Access Security
- 15. Auditing and Ongoing Security
- A. Sending Secure Email
- Index
- Colophon
Product information
- Title: Securing Windows Server 2003
- Author(s):
- Release date: November 2004
- Publisher(s): O'Reilly Media, Inc.
- ISBN: 9780596006853
You might also like
book
Windows Server® 2008 Security Resource Kit
Visit the catalog page for Microsoft® Windows Server 2008™ Security Resource KitVisit the errata page for …
book
Microsoft® Windows® Security Resource Kit, Second Edition
Fully updated and revised, this official MICROSOFT RESOURCE KIT delivers the in-depth information and tools you …
book
Windows Server 2003 Security: A Technical Reference
"Once again, Roberta Bragg proves why she is a leading authority in the security field! It's …
book
Microsoft® Windows® 2000 Security Handbook
Windows 2000 Security Handbook covers NTFS fault tolerance, Kerberos authentication, Windows 2000 intruder detection and writing …