RE: Windows Server 2003

• Previous message: ted koenig: "RE: arpwatch"
• In reply to: Doug Massey: "RE: Windows Server 2003"
• Next in thread: Alexander Suhovey: "'Shutdown Reason' in Windows 2000? (was: RE: Windows Server 2003)"
• Reply: Alexander Suhovey: "'Shutdown Reason' in Windows 2000? (was: RE: Windows Server 2003)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: "'Doug Massey'" <doug@masseytechnologies.com>, "'Chris Wanstrath'" <chrisw@cinci.rr.com>
Date: Thu, 11 Sep 2003 16:43:42 -0400

The same registry value (see below) can turn this feature on in Windows XP

System Key: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Reliability]
Value Name: ShutdownReasonUI
Data Type: REG_DWORD (DWORD Value)
Value Data: (0 = default, 1 = enabled)

Larry Seltzer
Security Editor, eWEEK.com
http://security.eweek.com/
larryseltzer@ziffdavis.com

-----Original Message-----
From: Doug Massey [mailto:doug@masseytechnologies.com]
Sent: Thursday, September 11, 2003 7:09 AM
To: Chris Wanstrath
Cc: security-basics@securityfocus.com
Subject: RE: Windows Server 2003

The shutdown information service can be turned off so you
don't have to deal with that if you don't want to.

---- Original message ----
>Date: Wed, 10 Sep 2003 14:27:40 -0400
>From: "Chris Wanstrath" <chrisw@cinci.rr.com>
>Subject: RE: Windows Server 2003
>To: <security-basics@securityfocus.com>
>
>I've been using it since June and my very first impression
(and the
>first impression of everyone I've talked to who has used
it) is hate for
>the new shutdown feature. You are forced to select a
reason you are
>shutting down your computer and if there is an unexpected
shutdown, you
>are forced to explain why the computer turned off. Sure,
this doesn't
>seem security-related but I think it has everything do with
security.
>Microsoft is saying that their system is so secure you
won't have to
>almost ever shut it down, and when you do you'd better have
a damn good
>reason. I found myself shutting down my server quite
frequently in the
>first few weeks, installing software and SQL and such.
>
>As far as secure by default, I am running the server behind
a firewall
>so I don't have the Microsoft firewall or any third party
firewall
>setup. I am running an FTP server (IIS), HTTP server
(IIS), SMTP
>server, POP3 server, and SQL. I haven't touched any of the
default
>security settings because I'm using the 6-month Microsoft
evaluation to
>test software on it. It's by no means a primary server,
but here is
>what NMap turns up on a portscan with the default security
settings...
>
>Port State Service
>21/tcp open ftp
>25/tcp open smtp
>80/tcp open http
>110/tcp open pop-3
>135/tcp open loc-srv
>139/tcp open netbios-ssn
>445/tcp open microsoft-ds
>1025/tcp open NFS-or-IIS
>1026/tcp open LSA-or-nterm
>1027/tcp open IIS
>1030/tcp open iad1
>1433/tcp open ms-sql-s
>2105/tcp open eklogin
>3052/tcp open PowerChute
>3389/tcp open ms-term-serv
>
>Doesn't look like the most secure box in my network, that's
for sure.
>
>--
>Chris Wanstrath : chrisw@cinci.rr.com
>LW Consulting : www.lw-consulting.com
>
>
>
>> -----Original Message-----
>> From: Chris Halverson [mailto:chris.halverson@encana.com]
>> Sent: Wednesday, September 10, 2003 7:38 AM
>> To: security-basics@securityfocus.com
>> Subject: Windows Server 2003
>>
>>
>>
>> What does everyone think of the hype around Windows
Server 2003 being
>>
>> secure by default? Has anyone implemented one in your
environment?
>>
>>
>>
>>
>>
>> Chris
>>
>>
>>
>------------------------------------------------------------
------------
>--
>> -
>> Captus Networks
>> Are you prepared for the next Sobig & Blaster?
>> - Instantly Stop DoS/DDoS Attacks, Worms & Port Scans
>> - Precisely Define and Implement Network Security
>> - Automatically Control P2P, IM and Spam Traffic
>> FIND OUT NOW - FREE Vulnerability Assessment Toolkit
>> http://www.captusnetworks.com/ads/42.htm
>>
>------------------------------------------------------------
------------
>--
>> --
>
>
>------------------------------------------------------------
---------------
>Captus Networks
>Are you prepared for the next Sobig & Blaster?
> - Instantly Stop DoS/DDoS Attacks, Worms & Port Scans
> - Precisely Define and Implement Network Security
> - Automatically Control P2P, IM and Spam Traffic
>FIND OUT NOW - FREE Vulnerability Assessment Toolkit
>http://www.captusnetworks.com/ads/42.htm
>------------------------------------------------------------
----------------
>
Doug Massey
Massey Technologies, Inc.
301-717-6404

---------------------------------------------------------------------------
Captus Networks
Are you prepared for the next Sobig & Blaster?
 - Instantly Stop DoS/DDoS Attacks, Worms & Port Scans
 - Precisely Define and Implement Network Security
 - Automatically Control P2P, IM and Spam Traffic
FIND OUT NOW - FREE Vulnerability Assessment Toolkit
http://www.captusnetworks.com/ads/42.htm
----------------------------------------------------------------------------

---------------------------------------------------------------------------
Captus Networks
Are you prepared for the next Sobig & Blaster?
 - Instantly Stop DoS/DDoS Attacks, Worms & Port Scans
 - Precisely Define and Implement Network Security
 - Automatically Control P2P, IM and Spam Traffic
FIND OUT NOW - FREE Vulnerability Assessment Toolkit
http://www.captusnetworks.com/ads/42.htm
----------------------------------------------------------------------------

• Previous message: ted koenig: "RE: arpwatch"
• In reply to: Doug Massey: "RE: Windows Server 2003"
• Next in thread: Alexander Suhovey: "'Shutdown Reason' in Windows 2000? (was: RE: Windows Server 2003)"
• Reply: Alexander Suhovey: "'Shutdown Reason' in Windows 2000? (was: RE: Windows Server 2003)"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]