Windows Server 2003 Security: A Technical ReferenceBy
Table of Contents
| Index
If you''''re a working Windows administrator, security is your #1
challenge. Now there''''s a single-source reference you can rely on
for authoritative, independent help with every Windows Server
security feature, tool, and option: Windows Server 2003
SecurityRenowned Windows security expert Roberta Bragg has brought
together information that was formerly scattered through dozens of
books and hundreds of online sources. She goes beyond facts and
procedures, sharing powerful insights drawn from decades in IT
administration and security. You''''ll find expert implementation tips
and realistic best practices for every Windows environment, from
workgroup servers to global domain architectures. Learn how to:
Reflect the core principles of information security throughout
your plans and processes
Establish effective authentication and passwords
Restrict access to servers, application software, and
data
Make the most of the Encrypting File System (EFS)
Use Active Directory''''s security features and secure Active
Directory itself
Develop, implement, and troubleshoot group policies
Deploy a secure Public Key Infrastructure (PKI)
Secure remote access using VPNs via IPSec, SSL, SMB
signing,
LDAP signing, and more
Audit and monitor your systems, detect intrusions, and respond
appropriately
Maintain security and protect business continuity on an ongoing
basis"Once again, Roberta Bragg proves why she is a leading authority
in the security field! It''''s clear that Roberta has had a great deal
of experience in real-world security design and implementation. I''''m
grateful that this book provides clarity on what is often a
baffling subject!"James I. Conrad, MCSE 2003, Server+, Certified Ethical
Hacker
James@accusource.net"Full of relevant and insightful information. Certain to be a
staple reference book for anyone dealing with Windows Server 2003
security. Roberta Bragg''''s Windows Server 2003 Security is a
MUST read for anyone administering Windows Server 2003."Philip Cox, Consultant, SystemExperts Corporation
phil.cox@systemexperts.com"Few people in the security world understand and appreciate
every aspect of network security like Roberta Bragg. She is as
formidable a security mind as I have ever met, and this is
augmented by her ability to communicate the concepts clearly,
concisely, and with a rapier wit. I have enjoyed working with
Roberta more than I have on any of the other 20 some odd books to
which I have contributed. She is a giant in the field of network
security."Bob Reinsch
bob.reinsch@fosstraining.com"Windows Server 2003 Security explains why you should do
things and then tells you how to do it! It is a comprehensive guide
to Windows security that provides the information you need to
secure your systems. Read it and apply the information."Richard Siddaway, MCSE
rsiddaw@hotmail.com"Ms. Bragg''''s latest book is both easy to read and technically
accurate. It will be a valuable resource for network administrators
and anyone else dealing with Windows Server 2003 security."Michael VonTungeln, MCSE, CTT
mvontung@yahoo.com"I subscribe to a number of newsletters that Roberta Bragg
writes and I have ''''always'''' found her writing to be perfectly
focused on issues I ''''need'''' to know in my workplace when dealing
with my users. Her concise writing style and simple solutions bring
me back to her columns time after time. When I heard she had
written a guide on Windows 2003 security, I ''''had'''' to have it.Following her guidance on deployment, her advice on avoiding
common pitfalls, and her easy to follow guidelines on how to lock
down my network and user environments (those darned users!) has me
(and my clients) much more comfortable with our Win2k3 Server
deployments. From AD to GPO''''s to EFS, this book covers it all."Robert Laposta, MCP, MCSA, MCSE, Io Network Services, Sierra
Vista
AZrob.laposta@cox.net"Roberta Bragg has developed a ''''must have'''' manual for
administrators who manage Microsoft Windows 2003 servers in their
organizations. The best practices for strengthening security
controls are well organized with practical examples shared
throughout the book. If you work with Windows 2003, you need this
great resource."Harry L. Waldron, CPCU, CCP, AAI, Microsoft MVP - Windows
Security Information Technology Consultant
harrywaldronmvp@yahoo.com"Roberta Bragg''''s Windows Server 2003 Security offers more
than just lucid coverage of how things work, but also offers sound
advice on how to make them work better."Chris Quirk; MVP Windows shell/user
cquirke@mvps.org"This book is an invaluable resource for anyone concerned about
the security of Windows Server 2003. Despite the amount and
complexity of the material presented, Roberta delivers very
readable and clear coverage on most of the security-related aspects
of Microsoft''''s flagship operative system. Highly recommended
reading!"Valery Pryamikov, Security MVP, Harper Security Consulting
valery.pryamikov@harper.no"As long as you have something to do with Windows 2003, I have
four words for you: ''''Order your copy now.''''"Bernard Cheah, Microsoft IIS MVP, Infra Architect, Intel
Corp.
bernard@mvps.org"Roberta Bragg has developed a ''''must have'''' manual for
administrators who manage Microsoft Windows 2003 servers in their
organizations. The best practices for strengthening security
controls are well organized, with practical examples shared
throughout the book. If you work with Windows 2003, you need this
great resource."Harry L. Waldron
CPCU, CCP, AAI Microsoft MVPWindows Security Information
Technology Consultant
Authorization Using Security Options and Registry SettingsIn addition to user rights and object permissions, other types of controls also affect authorization. Many registry entries can restrict the access that a user or application has to a specific network connection, software, resource, or process. Some registry entries are easy to edit because they are represented in the Security Options section of Group Policy. Others can be found in the Administrative Templates section of Group Policy. In addition, Authorization Manager, Software Restriction Policies, and IPSec Policies can all be used to control user activity and resource access on the network. Administrative Templates, Software Restriction Policies, and Authorization Manager are discussed in Chapter 4.Security Options can impact authentication and authorization. When set in local group policy, they impact the local computer. They can also be set in a group policy that is applied to many computers. The following Security Options should be considered when building an authorization model. Accounts: Limit Local Use of Blank Passwords to Console LogonWhen this option is enabled, as it is by default, and a user account has a blank password, the user will be able to log on only from the console. Attempts to access the computer over the network using the account with a blank password will fail. This option has no impact on domain accounts. Devices: Allow Undock Without Having to Logon OnlyWhen enabled, as it is by default, if a server is running on a portable computer docked in a docking station, the server can be removed from the docking station without logging on. Devices: Allowed to Format and Eject Removable MediaThis setting specifies who can format or eject removable drives. Choices are administrators, power users, or administrators and interactive users or not defined. By default, the local Administrators group is selected. Devices: Prevent Users from Installing Printer DriversIf enabled, as it is by default, users cannot install printer drivers. Printer drivers run in the kernel and are therefore able to do more harm. A malicious individual might provide malicious code in the form of a free printer driver and persuade users to download and install his malware by advertising it as making printers work better. If users are able to install rinter drivers, then they might install such malware without knowing they are doing so. Alternatively, an unsupported printer driver that is buggy might be installed and cause problems. Leaving this setting at the default may prevent users from downloading and installing potentially harmful drivers and prevents users from installing and sharing a network printer. By default, administrators, power users, and server operators can install printer drivers. This setting has no impact on them. Device: Restrict CD-ROM to Locally Logged On User Only: DisabledIf enabled, this setting prevents network access to the server's CD-ROM drive while a user is logged on locally to the server. This setting might prevent access to installation CD-ROMs over the network, thus preserving license compliance, preventing users from obtaining access to software they should not have, and protecting them from access to potentially harmful code on CD-ROMs loaded on the server. The setting is disabled by default. If enabled, however, it may interfere with installer programs that do not run in the context of the current user but in their own user context. Device: Restrict Floppy Use to Locally Logged On User Only: DisabledIf enabled, this setting prevents network access to the server's floppy drive if there is a locally logged on user. This setting is disabled by default. Device: Unsigned Driver Installation Behavior: Warn But Allow InstallationWhen a driver is installed, this setting determines one of three actions: Warn but allow installation (the default), Silently succeed, or Do not allow installation. Drivers may be submitted to the Windows Hardware Quality Lab for testing and approval. Once approved, Microsoft signs the driver. An unsigned driver will cause the action selected here. If a driver is not approved, that does not mean it is bad, just that it hasn't been tested. When an attempt is made to install a driver, the system looks for a signature. If the signature is good, then even if the security option is set to Do not allow installation, the driver installation will succeed. If no signature is present, then this setting must be set at the Warn designation or the Silently succeed setting, or else it will not be installed. By setting this option to the warning, a pop-up will query for approval to install the driver. The hope is that the warning will alert the user that an unapproved driver is about to be installed. Perhaps if problems occur after the installation, the connection with the unapproved driver will lead to a problem resolution. Unfortunately, not every "good" driver is approved, so best practices dictate to set this option to Warn. In a high-security installation, set the option to Do not allow installation. If an unsigned driver must be used, an authorized administrator can temporarily change the setting to allow the driver to be installed, and then switch the setting back to Do not allow installation. Network Access: Named Pipes That Can Be Accessed AnonymouslyNamed pipes are communication processes. Security can be established for named pipes, but some applications create named pipes that do not need authentication. If the server needs access to these types of named pipes, add their name to this Security Option. Several default pipes are listed, and you may want to remove those names if access to those pipes is not necessary. Network Access: Remotely Accessible Registry PathsThis option allows you to list registry paths that may be accessed remotely, while denying access to all others. This is important. If an attacker can remotely access the registry, much damage can be done. Restricting access limits the risk. Several paths are listed. Network Access: Remotely Accessible Registry Paths and SubpathsAdditional paths are listed. The system will inspect the WinReg key to determine access permissions for these paths. Network Access: Shares That Can Be Accessed AnonymouslyAnonymous access to shares makes the computer more vulnerable to attack. The shares that you create should have access controlled via share permissions, as defined in Chapter 5. However, blocking anonymous access to all shares may prevent some applications from running. Use this option to list shares that must allow anonymous access. Allow Systems to Be Shut Down Without Having to Log On:If this option is enabled, anyone can shut down the server from the logon screen. Servers should only be shut down for maintenance, and you should account for all system shutdowns. The system records the user account and the entered reason for the shutdown in the system log when a logged on user shuts down the system. Requiring a user to log on to shut down a server also ensures that a server is not inadvertently shut down, removing its services from the network. Best practices require that, for a system to be shut down, you must log on and have the authority to shut the system down. In Window Server 2003, this also means that, by default, you are required to enter a reason for the shutdown. This security option would allow you to modify this behavior and present the option in the GINA to shut the system downno logon required. (The computer can, of ourse, be shut down by pulling its plug or other wise interrupting electrical service. However, this will be recorded as an unexpected shutdown. ) System Objects: Strengthen Default Permissions of Internal Systems Objects (e.g. Symbolic Links):When enabled, as it is by default, this option increases security on internal system objects. Internal systems objects are those used by the operating system to manage critical operations. Using this setting increases security on those objects but may prevent legacy applications from working. |
لطفا منتظر باشید ...
