Firewall Wizards mailing list archives
How to Secure Windows? was How to Save the World
From: MHawkins () TULLIB COM
Date: Mon, 13 Dec 2004 11:42:36 -0500
Marcus, Oh how I wish we were back in the days of the 3270 controller and the Zilog Z80! But seriously, it has always been most annoying to me that with a few good books, the Internet, a few mentors and experience I have been able to keep very up to date and highly proficient at securing Unix (all flavors) and networks (all vendor flavors of routers, switches, firewalls etc) but Microsoft remains a black art where only third party vendors seem to be able to secure the platform. The books on Windows security are always generic rubbish and never give you the real nuts and bolts of how to actually secure Windows. The Internet searches invariably turn up generic how to's as well that stink. And I have not yet met a Windows admin who knows enough (or took it seriously enough)about securing Windows unless it was done with third party products (and I have worked for alot of great big companies and every year the Windows folks remain committed to third party products and don't know diddly about securing Windows themselves while the Unix and network folks get more and more professionally security savy and sophisticated). And trying to do it in the lab myself always pointed me back to the three problems above. All I want to do is have a standard cheat sheet to lock down the machine so that all those exe's that I don't want to run - CAN'T - and all those exe's that I do want to let run - CAN - but only under their own account and only in their own volume space! Is that too much to ask? I've written the security policy for a few companies (not that that means much) but when I drill down to Unix vs Windows standards, it's always been fluff on the Windows side with some third party products throw in. While on the network and Unix side it's been 100% detail and totally implemented within the specific platforms intrisic configuration. No third party needed. Maybe someone can recommend a book, a link or a mentor or all three. I am sick of looking at Windows machines and KNOWING they are insecure. Mike H "Disclaimer: This electronic mail is intended only for the use of the addressee(s)named herein. Unless otherwise specifically stated, the views contained and expressed in this electronic mail are strictly those of the individual sender and are not the views of the Company or any of its Directors or other employees. If you are not the intended recipient of this electronic mail, you are hereby notified that any dissemination, distribution or coping of this electronic mail is strictly prohibited. If you received this electronic mail in error please immediately notify us by return electronic mail and delete this electronic mail from your system." _______________________________________________ firewall-wizards mailing list firewall-wizards () honor icsalabs com http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Current thread:
- How to Secure Windows? was How to Save the World MHawkins (Dec 13)
- Re: How to Secure Windows? was How to Save the World Devdas Bhagat (Dec 13)
- Re: How to Secure Windows? was How to Save the World Kevin Sheldrake (Dec 14)
- Re: How to Secure Windows? was How to Save the World Dave Piscitello (Dec 21)
- Re: How to Secure Windows? was How to Save the World Paul D. Robertson (Dec 23)
- Re: How to Secure Windows? was How to Save the World Dave Piscitello (Dec 26)
- Re: How to Secure Windows? was How to Save the World Paul D. Robertson (Dec 27)
- Re: How to Secure Windows? was How to Save the World Barney Wolff (Dec 26)
- Re: How to Secure Windows? was How to Save the World Paul D. Robertson (Dec 27)
- Re: How to Secure Windows? was How to Save the World Paul D. Robertson (Dec 23)
- Re: How to Secure Windows? was How to Save the World Mark (Dec 26)
- Re: How to Secure Windows? was How to Save the World Paul D. Robertson (Dec 27)
- Re: How to Secure Windows? was How to Save the World Devdas Bhagat (Dec 13)