Re: Security for Windows 2000 Server
From: ambharish (ambharish_at_discussions.microsoft.com)
Date: 12/22/04
- Next message: ambharish: "Re: Security for Windows 2000 Server"
- Previous message: aaron: "Re: Anonymous LDAP on Windows 2003"
- In reply to: Steve Riley [MSFT]: "Re: Security for Windows 2000 Server"
- Next in thread: Steven L Umbach: "Re: Security for Windows 2000 Server"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 22 Dec 2004 06:53:14 -0800
Thanks for the valuable info,
Do u mean for providing security to "Member Server" I need to consider
"Hardening Guide"(W2KHG-MemberServer) and for more specific recommendations
such as File and Print Server use the "Securing Windows 2000 Server"
INF Files from Hardening Guide
W2KHG-baseline
W2KHG-MemberServer ***Used for Member Server***
W2KHG-DomainController ***used for Domain Controller***
W2KHG-StandaloneServer
INF Files from Securing Windows 2000 Server
MSS Domain
MSS Baseline ***Used for Member Server***
MSS DCBaseline Role ***used for Domain Controller***
MSS FilePrint Role
MSS Infrastructure Role
MSS IIS Role
MSS Optional File System ACLs
When both the documents provide security for Member Server, then why should
i consider
Hardening Guide
and more over
is it ok to consider only "Securing Windows 2000 Server" as it sounds complete
providing security to almost any role except stand-alone
and consider only Stand-alone role from hardening guide
NOTE: "Securing Windows 2000 Server" gives recommendations based on
fictitious organization
which he called "Contoso"
it would be great if these concerns are clarified
Thanks in advance
--Shekar
"Steve Riley [MSFT]" wrote:
> The first guide is a broad baseline security guide that is appropriate for
> most installations. It is the foundation for the more specific role-based
> guidance that's described in the second guide. The third guide is specific
> to the Windows 2000 configuration that attained Common Criteria certification.
>
> Generally we recommend you follow the first and use the specific recommendations
> from the second that are appropriate for your environment. Use the third
> (rather than the others) only if you have a need to exactly duplicate CC
> settings (which is generally not necessary).
>
> Steve Riley
> steriley@microsoft.com
>
>
>
> > Which guide should i consider to secure my windows 2000 server ?
> >
> > as i found many different guides from Microsoft itself
> >
> > 1) Windows 2000 Security Hardening Guide downloaded from
> > http://www.microsoft.com/downloads/details.aspx?FamilyID=15E83186-A2C8
> > -4C8F-A9D0-A0201F639A56&DisplayLang=en
> >
> > 2)Securing Windows 2000 Server.pdf downloaded from
> > http://www.microsoft.com/downloads/details.aspx?FamilyId=9964CF42-E236
> > -4D73-AEF4-7B4FDC0A25F6&displaylang=en
> >
> > 3) Windows 2000 Security Configuration Guide
> > http://download.microsoft.com/download/8/c/c/8cc94365-13d6-4975-bf69-9
> > d4cd16a01a7/w2kccscg.pdf
> >
> > I found no problem to secure my Windows XP systems, as i found only
> > one security guide from Microsoft but this is not the case with 2000
> > server
> >
> > please do help me !
> >
> > Any help is greatly appreciated !
> >
> > Thanks in advance !!!
> >
> > Cheers, Shekar
> >
>
>
>
- Next message: ambharish: "Re: Security for Windows 2000 Server"
- Previous message: aaron: "Re: Anonymous LDAP on Windows 2003"
- In reply to: Steve Riley [MSFT]: "Re: Security for Windows 2000 Server"
- Next in thread: Steven L Umbach: "Re: Security for Windows 2000 Server"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
