Announcement

Collapse
No announcement yet.

hardening Servers

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • hardening Servers

    Im looking for some templates/ideas to harden my servers (w2k)
    someone got something for me?

    2 IIS, 2 DC, 1 exchange, 1 ISA 1 exact with sus
    Marcel
    Technical Consultant
    Netherlands
    http://www.phetios.com
    http://blog.nessus.nl

    MCITP(EA, SA), MCSA/E 2003:Security, CCNA, SNAF, DCUCI, CCSA/E/E+ (R60), VCP4/5, NCDA, NCIE - SAN, NCIE - BR, EMCPE
    "No matter how secure, there is always the human factor."

    "Enjoy life today, tomorrow may never come."
    "If you're going through hell, keep going. ~Winston Churchill"


  • #2
    Not much info. to help you

    You don't give enought info. but at general, you SHOULD do these:

    1. Apply most Microsoft recently patchs
    2. Keep your virus definitions up to date (you have an Antivirus, right?)
    3. Minimize services (shutdown all you're currently don't need)
    4. Try to keep your website organized, with folders, and put each kind of files (images, apps, html) at each folder. Give the correct NTFS permissions to 'em
    5. Finally, If the "data" on your servers is more important than the real efforts you're doin' (can), get a external consultant and let him probe/test your network.

    Comment


    • #3
      more looking at policies, IPSEC etcetc...

      the actions you're telling me, are already done...
      im just looking for some documentation and experiences about it..
      Marcel
      Technical Consultant
      Netherlands
      http://www.phetios.com
      http://blog.nessus.nl

      MCITP(EA, SA), MCSA/E 2003:Security, CCNA, SNAF, DCUCI, CCSA/E/E+ (R60), VCP4/5, NCDA, NCIE - SAN, NCIE - BR, EMCPE
      "No matter how secure, there is always the human factor."

      "Enjoy life today, tomorrow may never come."
      "If you're going through hell, keep going. ~Winston Churchill"

      Comment


      • #4
        I'll send you a sample IPSec policy I'm using on webservers.
        Attached Files
        Cheers,

        Daniel Petri
        Microsoft Most Valuable Professional - Active Directory Directory Services
        MCSA/E, MCTS, MCITP, MCT

        Comment


        • #5
          thnx.
          i will have a look at it..
          Marcel
          Technical Consultant
          Netherlands
          http://www.phetios.com
          http://blog.nessus.nl

          MCITP(EA, SA), MCSA/E 2003:Security, CCNA, SNAF, DCUCI, CCSA/E/E+ (R60), VCP4/5, NCDA, NCIE - SAN, NCIE - BR, EMCPE
          "No matter how secure, there is always the human factor."

          "Enjoy life today, tomorrow may never come."
          "If you're going through hell, keep going. ~Winston Churchill"

          Comment

          Working...
          X