Re: hisecweb.inf hardening
From: Jason Wasser (jason_at_bryan.edu)
Date: 06/22/05
- Next message: Jason Wasser: "Re: Adding new template on Win 2000 DC"
- Previous message: Roger Abell: "Re: security in AD"
- In reply to: James Butler: "hisecweb.inf hardening"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 22 Jun 2005 09:53:39 -0400
James,
You can use the Local Security Policy MMC snap-in to setup the
hisecweb.inf security template. Right-click on the security policy and
click Import. It should take you right to c:\windows\system32\security
which has all the inf security templates. Like the other guys said it's
best to use the other tools first to see what is going to be applied
before you just turn it on. The higher the security you set the more
likely things will start breaking.
James Butler wrote:
> Although, Windows 2003 claim to be secure by default, I don't trust that
> statement, I still see services running that shouldn't.
>
> I am trying to find the best way to harden Win2003 servers, should I use the
> AD to apple hisecweb.inf file to the host, or should I just manually start
> turning off services. How do I secure Stand alone servers such as public web
> server, does inf file exist for it. Since these public servers are not
> member of the forest, how does one apply the inf file.
>
>
> Where can I find info on what hisecweb.inf actually does to a server ?
>
- Next message: Jason Wasser: "Re: Adding new template on Win 2000 DC"
- Previous message: Roger Abell: "Re: security in AD"
- In reply to: James Butler: "hisecweb.inf hardening"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
