RE: [FW1] NT Server Setup Question

Mon, 19 Jun 2000 14:26:32 -0700 


Shane,
Basically, grab everything you can find, mix them together and then use what
parts you want (ie, the more you change the tighten she'll be!). NB. doco what
changes you do and keep re-booting and rdisk'ing. If you keep searching you find
lots of them (goto ntsecurity,com or securityfocus and checktheir links!!)

try:
http://infosec.navy.mil/COMPUSEC/ntsecure.html
lance's site- http://www.enteract.com/~lspitz/nt.html,
phoneboy's site,
winnt.com - they have Mark Minasi's book on NT security, I think appendix A
contains            hardening details,
http://people.hp.se/stnor/ - can't remember whjat this one has!!
PC Advisor mag has a good article - if I get round to scanning it I'll forward!

   goodluck

   Damian.

-----Original Message-----
From: <[EMAIL PROTECTED]> 
Sent: Monday, June 19, 2000 2:47 PM
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: RE: [FW1] NT Server Setup Question 



Lance Spitzner has a good publication on hard to harden the NT OS. 
or you could get a Nokia :) ... pretty well stripped of everything.

Thomas

-----Original Message-----
From: Shane Hill [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, June 14, 2000 4:43 AM
To: '[EMAIL PROTECTED]'
Subject: [FW1] NT Server Setup Question


Is there any reason why I can't apply some of the security tightening
procedures Microsoft recommends for an IIS server in
http://www.microsoft.com/technet/security/iischk.asp to my NT4 firewall-1
server?

I've looked at one or two NT firewall lockdown documents but they don't
mention topics such as;

   Turn off NTFS 8.3 Name Generation
   OS/2 and POSIX subsystems removed
   Remove all net shares
   Prevent unauthenticated access to the registry etc.

Thanks,

Shane




================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================


**********************************************************************
This email and any files transmitted with it are confidential and 
intended solely for the use of the individual or entity to whom they   
are addressed. If you have received this email in error please notify 
the Postmaster.

This footnote also confirms that this email message has been swept by 
MIMEsweeper for the presence of computer viruses.

[EMAIL PROTECTED]
**********************************************************************


================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

Reply via email to