COOKING SECURITY WITH WINDOWS SERVER 2003!!

Do you use Windows Server 2003 and perform security tasks as one of your primary job functions? If you do, then this book is for you! Authors Mike Danseglio and Robbie Allen, have done an outstanding job of writing a book that covers Windows Server 2003 and some amount of Windows XP security.

Danseglio and Allen, begin by setting the stage for the rest of the book by providing an introduction to Windows Server 2003 security concepts. Then, the authors show you how to secure an initial configuration. Next, they describe many techniques to help protect the computer at the TCP/IP protocol level. Then, the authors discuss how to protect local and network files with strong encryption. Next, they show you how to apply numerous options to your Active Directory forest. The authors continue by describing the use of Group Policy to configure and increase the security of both client and server computers. Then, the authors show you how to use security templates to save and deploy settings. Next, they focus on the tasks necessary to improve security on domain controllers. The authors then show you the vulnerabilities and security recipes you can use to defend against user account attacks such as password guessing or spoofing. Then, they describe how you can restrict rights and permissions to ensure that only desired users can perform specific needs. The authors continue by focusing on securing the grotesquely insecure DHCP component of Windows. Then, they describe how you can prevent several common DNS-based attacks. Next, the authors show you how to secure a file and print server, which is one of the most common uses of Windows Server 2003. The authors then discuss numerous methods that you can use to encrypt and sign network traffic using IPec. Then, they continue by covering the locking down of the much-maligned IIS. Next, the authors explore the remote access technologies of RRAS and IAS in depth, with a particular focus on improving their security. Then, they describe how you can help secure these remote access technologies, which are favorite attack vectors for evildoers. The authors then go into great detail describing how to plan, deploy, and use both PKI and certificates. They continue by showing you how to audit different types of events. Next, show you how to configure and manage event logs. Finally, they focus on and help simplify one of the most over-hyped security issues: patch management.

This most excellent book should not be considered the ultimate reference to Windows security--that's not the intention of the authors. More importantly, their intention is to provide efficient and innovative ways to complete tasks and resolve problems.

Other Reviews

• Good introduction in windows security
• Strictly for the experienced system admin
• Great Windows 2003 Security Admin Book
• COOKING SECURITY WITH WINDOWS SERVER 2003!!
• Recipes and formulas sorted by task domain or system service for quick and easy access