Re: Windows Server Hardeing

---

• From: "Roger Abell [MVP]" <mvpNoSpam@xxxxxxx>
• Date: Mon, 19 Jun 2006 08:43:58 -0700

---

Eng
See my reply to your identical posting to
microsoft.public.security
I did not see anything specific about IIS in your post,
but branching out from
www.microsoft.com/technet/security
you can find most all hardening and securing guides
by particular product.
Roger
<Eng.Rana@xxxxxxxxx> wrote in message
news:1150706031.104338.135990@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

Hi all,


I was wondering why do we need to harden Windows server 2003 by
applying rules like:
1.Remove any unneeded Services
2.Close unneeded ports
3.Rename Administrator account
4.Prevent users from installing printer drivers
5.Restrict CD-ROM and floppy access to locally logged-on user only


... and many many more

why are we doing so ?????
and what is the main problem with the default installations.

i tried searching the net but all what i found is that what to do, but
not why do we do each step and what is the effect of not applying it.

thanks for ur help and time

.

---

• References:
  • Windows Server Hardeing
    • From: Eng . Rana

• Prev by Date: Re: IIS Snap-In rights question
• Next by Date: IIS WebDAV Long Filename Support?
• Previous by thread: Windows Server Hardeing
• Next by thread: IIS WebDAV Long Filename Support?
• Index(es):
  • Date
  • Thread

---

Relevant Pages Windows Server Hardeing ... applying rules like: ... 1.Remove any unneeded Services ... 4.Prevent users from installing printer drivers ... 5.Restrict CD-ROM and floppy access to locally logged-on user only ... (microsoft.public.inetserver.iis.security) Windows Server Hardeing ... applying rules like: ... 1.Remove any unneeded Services ... 4.Prevent users from installing printer drivers ... 5.Restrict CD-ROM and floppy access to locally logged-on user only ... (microsoft.public.security)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(10)