| Javascript Feeds RSS Feed Security Dashboard | SearchSecurity.com |
|
Implementing Password Controls and Account Policies Using Windows 2000 Group Policy This paper will provide the reader with a high-level understanding of Group Policy, discuss some issues to consider when implementing Group Policy, and describe how strong password controls and secure account policies, as documented in the SANS Windows NT Security Step by Step, can be implemented in Windows 2000.
By Carlo Scannella, 05/17/2004
|
|
Basic Steps to Hardening a Standalone Windows 2000 Installation The first consideration in a Windows 2000 installation is to define the purpose of the installation. One would set up a home machine very differently from one set up as a web server. Generally, it is a good idea to limit the roles any given machine will play, especially when connecting a machine directly to the internet, where every port you open or service you enable creates a potential security hole.
By Todd Anderson, 05/17/2004
|
|
Role-Based Administration for Windows 2000 Microsoft® Windows® 2000 has a significantly more complex security structure than previous versions of Microsoft operating systems. This paper looks at simplifying the management of security for Windows 2000 by discussing rolebased administration in Windows 2000 and a product that provides role-based administration capabilities for Windows 2000.
By Jane E. Murley, 05/17/2004
|
|
A Comparison of the Security of Windows NT and UNIX From the abstract: "... a brief comparison of two operating systems, Windows NT and Unix. ... the conclusion is that there are no significant differences in the "real" level of security between these two operating systems." From the introduction: "It has been claimed that the security of the Windows NT operating system is far better than that of previous commercial operating systems." The authors wrote this paper at least 6 years ago. History has not vindicated their claims. In 1998, this paper was an amazingly level-headed attempt to pierce the veil of propaganda surrounding NT.
By Hans Hedbom , Stefan Lindskog, Stefan Axelsson, Erland Jonsson, 04/30/2004
|
|
Addressing Network Security through Windows 2000 Active Directory: Designing a Single Domain Structure Windows 2000 provides a remedy for the all-powerful NT Domain Admin group, where traditionally excessive powers were given to groups of users, thereby violating the security principal of least privilege. Microsoft’s answer is Windows 2000’s Active Directory. However, the complexity of Active Directory makes it difficult to understand how best to design a secure directory structure. This paper provides security design considerations for locating users, computers and groups in the Windows 2000 network environment.
By Les McCarter , 04/27/2004
|
|
Building a Secure Windows 2000 Professional Network Installation This paper will examine these new features and explain the intent of the features as well as recommend settings that should be applied. While there are some features of Windows® 2000 such as Group Policy and Intellimirror that only apply to a Windows® 2000 domain, the scope of this paper is the Windows® 2000 Professional OS. Some of the recommended settings can and often should be implemented using Group Policy. This paper will not cover Active Directory, Group Policy or Intellimirror in any depth except to mention these technologies when appropriate.
By Bruce Fyfe, 04/27/2004
|
|
Limiting Concurrent Logins in Windows NT/2000 There are several security issues and administrative headaches that can occur when users are allowed to logon to several workstations simultaneously in a network environment. First and foremost would be the accountability problems that can arise from a user logging into several workstations at once. If the user deletes a critical file or somehow changes a configuration, how can they be held accountable if they were logged into 5 workstations at once? You could never be sure if the user actually committed the action or not. If a user is logged onto several workstations and an offensive e-mail is sent from his account, did that user send it or was it someone else that was using his account? Accessibility problems can also arise if the user is logged into several workstations and simply forgets to log off of all of them.
By Gene Burton, 04/25/2004
|
|
Using Security Templates and Group Policy to Secure Windows Servers Active Directory group policies provide a mechanism to assist with just this task in a Windows 2000 environment. Using group polices provides central management, consistent security settings on servers or desktops, and a means to quickly update settings when necessary. Group policies are intended to be an integral part of a complete security strategy, not the security strategy. This document describes how you can secure a Windows 2000 server using group policies.
By Chet Duncan, 04/25/2004
|
|
Windows NT has secret APIs Documents the fact that Microsoft has concealed the real system call interface to Windows NT, and extrapolates a few consequences of that secrecy. Begs the question of what else Microsoft chose to hide in Windows NT (and W2K and now XP)?
By Bruce Ediger, 04/24/2004
|
|
WinNT syscalls insecurity A discussion of the Windows NT system call convention, and what problems that convention has with respect to the ability to make them reliable and secure.
By Solar Designer, 04/24/2004
|
|
Page: 1 2 34 |
