Windows Server 2003 Security Cookbook: Security Solutions and...

Features

• Cover Type: Paperback with 520 pages
• Published by: O'Reilly Media, Inc. December 16, 2005
• Written in: English
• ISBN 10 Number: 0596007531
• ISBN 13 Number: 978-0596007539
• Book Dimensions: 9 x 7.1 x 1 inches
• Weighs: 1.6 pounds

Book Description
In the last few years, security has become a hot-button issue for IT organizations of all sizes. Accordingly, many of the security features that were either optional or suspect in Windows 2000 have become solid, effective fixtures in Windows Server 2003-making it the most secure operating system Microsoft has ever produced. That is, if you know how to configure it properly.

The Windows Server 2003 Security Cookbook wants to make sure that you do know how. Picking up right where its predecessor, the Windows Server Cookbook, left off, this desktop companion is focused solely on Windows Server security. It teaches you how to perform important security tasks in the Windows Server 2003 OS using specific and adaptable recipes. Each recipe features a brief description of the problem, a step-by-step solution, and then a discussion of the technology at work. Whenever possible, the authors even tell you where to look for further information on a recipe.

The book is written in a highly modular format, with each chapter devoted to one or more technologies that Windows Server 2003 provides. This approach allows you to look up a task or scenario that you want to accomplish, find that page, and read that particular recipe only. Topics include:

• System preparation and administration
• Protecting the computer at the TCP/IP level
• Applying security options to Active Directory
• Improving security on domain controllers
• Securing DHCP controllers
• Encrypting and signing network traffic using IPSec
• Patch management

If you're an intermediate or advanced system administrator who wants to feel secure when deploying Windows Server 2003 and its related services, then you don't want to be without the Windows Server 2003 Security Cookbook.

About The Author
Mike Danseglio is a program manager in the Security Solutions group at Microsoft Corporation, and has worked in the areas of security and technology for the last decade. He holds several technical certifications including MCSE and CISSP. Mike's work includes developing and teaching extensive security training on topics such as cryptography, security technology, and attacks and countermeasures. Among his recent projects are writing security documentation for Windows XP and the Windows Server 2003 family, as well as working on a host of white papers and articles. Mike also works on security feature development for Microsoft Windows. Robbie Allen is a Technical Leader at Cisco Systems where he has been involved in the deployment of Active Directory, DNS, DHCP, and several Network Management solutions. He enjoys working on Unix and Windows, and his favorite programming language is Perl. Robbie was named a Windows Server MVP in 2004 and 2005 for his contributions to the Windows community and publication of several popular O'Reilly books. Robbie is currently studying at MIT in the System Design and Management program.

Reader Reviews
Do you use Windows Server 2003 and perform security tasks as one of your primary job functions? If you do, then this book is for you! Authors Mike Danseglio and Robbie Allen, have done an outstanding job of writing a book that covers Windows Server 2003 and some amount of Windows XP security. Danseglio and Allen, begin by setting the stage for the rest of the book by providing an introduction to Windows Server 2003 security concepts. Then, the authors show you how to secure an initial configuration. Next, they describe many techniques to help protect the computer at the TCP/IP protocol level. Then, the authors discuss how to protect local and network files with strong encryption. Next, they show you how to apply numerous options to your Active Directory forest. The authors continue by describing the use of Group Policy to configure and increase the security of both client and server computers. Then, the authors show you how to use security templates to save and deploy settings. Next, they focus on the tasks necessary to improve security on domain controllers. The authors then show you the vulnerabilities and security recipes you can use to defend against user account attacks such as password guessing or spoofing. Then, they describe how you can restrict rights and permissions to ensure that only desired users can perform specific needs. The authors continue by focusing on securing the grotesquely insecure DHCP component of Windows. Then, they describe how you can prevent several common DNS-based attacks. Next, the authors show you how to secure a file and print server, which is one of the most common uses of Windows Server 2003. The authors then discuss numerous methods that you can use to encrypt and sign network traffic using IPec. Then, they continue by covering the locking down of the much-maligned IIS. Next, the authors explore the remote access technologies of RRAS and IAS in depth, with a particular focus on improving their security. Then, they describe how you can help secure these remote access technologies, which are favorite attack vectors for evildoers. The authors then go into great detail describing how to plan, deploy, and use both PKI and certificates. They continue by showing you how to audit different types of events. Next, show you how to configure and manage event logs. Finally, they focus on and help simplify one of the most over-hyped security issues: patch management. This most excellent book should not be considered the ultimate reference to Windows security--that's not the intention of the authors. More importantly, their intention is to provide efficient and innovative ways to complete tasks and resolve problems. Comment | | (Report this)