[REVS] Securing the Microsoft Internal Network

From: support@securiteam.com
Date: 06/18/02 

From: support@securiteam.com
To: list@securiteam.com
Date: Tue, 18 Jun 2002 20:38:07 +0200 (CEST)

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
- - promotion

When was the last time you checked your server's security?
How about a monthly report?
http://www.AutomatedScanning.com - Know that you're safe.
- - - - - - - - -

  Securing the Microsoft Internal Network
------------------------------------------------------------------------

SUMMARY

The goal of document is to define new guidelines in order to improve the
security in Microsoft Windows-based internal networks. In order to be
useful in real situations, these measures have been thought in function of
obtaining the lowest-cost possible approach, to prevent such a project to
become financially prohibitive. Security being a field in constant
evolution, it is possible that new solutions will be integrated to these
presented here in the future.

DETAILS

1. Introduction
One of the first things you learn when you start looking into computer
security is that about 80% of the attacks reported on networks come from
the inside, principally from fired or disgruntled employees, from external
consultants or from malicious hackers that got inside the network one way
or the other (non-secured Internet connection, plugged modems, social
engineering, got hired by the victim under false pretensions, etc.). Since
the demographical explosion of the Internet, this number tends to lower,
but latest estimates still declare that between 60%-80% of network
incidents happen on the internal network. However, the majority of
computer security companies will put most of their efforts on securing the
periphery of the network, while leaving the internal network itself
completely open, either by a lack of consciousness about this problem,
either by lack of competence, or more often either by lack of money to put
up a project affecting all workstations on a network.

ADDITIONAL INFORMATION

The complete article can be found at:
 <http://www.geocities.com/floydian_99/secneten.txt>
http://www.geocities.com/floydian_99/secneten.txt

The complete article (in French) can be found at:
 <http://www.geocities.com/floydian_99/secnetfr.txt>
http://www.geocities.com/floydian_99/secnetfr.txt

The information has been provided by <mailto:floydian_99@yahoo.com>
Floydman.

========================================

This bulletin is sent to members of the SecuriTeam mailing list.
To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@securiteam.com
In order to subscribe to the mailing list, simply forward this email to: list-subscribe@securiteam.com

====================
====================

DISCLAIMER:
The information in this bulletin is provided "AS IS" without warranty of any kind.
In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.

Relevant Pages