=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= SEARCHWIN2000.COM | Security Tip August 20, 2002
Essential tools and advice for the security-focused administrator. More tips: http://searchwin2000.techtarget.com/tips/ =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= FROM OUR SPONSORS: - Top 10 Windows and AD Security Threats http://searchWin2000.com/r/0,,5082,00.htm?bindview - Network Management/VoIP/Wireless Strategies Revealed http://searchWin2000.com/r/0,,4678,00.htm?networkingdecisions =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= IN THIS ISSUE | Table of Contents 1. SECURITY TIPS - Circumscribe the administrator account - Removing the "Everyone" group in AD - Defining and preventing buffer overflows 2. IMPORTANT ANNOUNCEMENTS AND LINKS - Live Webcast: Using ISA Server to create VPN gateways - Quick Hit: Oops! True IT blooper #56 -- A bad penny - Best Web Links: Antivirus - Tip Contest: Win a SONICblue Rio 600 Digital Audio Player! ____________________________________________________________________ ************************ SPONSORED BY: BindView ******************** Top 10 Windows and AD Security Threats Do you know the 10 most widely exploited vulnerabilities in the Windows environment and what you can do about them? Get this FREE white paper, "Top 10 Security Threats for Windows 2000 and Active Directory," and find out. If nothing else, closing these top 10 holes will go a long way to securing your network! >> Download the white paper: http://searchWin2000.com/r/0,,5082,00.htm?bindview ____________________________________________________________________ CIRCUMSCRIBE THE ADMINISTRATOR ACCOUNT | by Adesh Rampat In Windows NT 4.0, the administrator can take ownership of any file/folder and obtain read/write access to it. Some users may view this as a security risk. So how can files stored on an NT 4.0 server be truly secured? By establishing policies, you can enhance the security of files/folders. >> CLICK for the full tip... http://www.searchWin2000.com/tip/1,289483,sid1_gci845284,00.html =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= REMOVING THE "EVERYONE" GROUP IN AD | by Alan Warren Removing the "Everyone" group NTFS permissions from the root of a drive is a standard security policy. This prize-winning user-submitted tip will show you how. >> CLICK for the full tip... http://searchwin2000.techtarget.com/tip/1,289483,sid1_gci811777,00.html =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= DEFINING AND PREVENTING BUFFER OVERFLOWS | by Kurt Seifried When you put more data into a buffer than it is configured to hold, the data often ends up in the executable area of the stack. Often the attacker accomplishes this by overwriting the return address, allowing them to interrupt the flow of the program and run custom code. Even with limited space (less then a hundred bytes of executable content) most attackers can insert enough code to compromise a system. >> CLICK for the full tip... http://searchwin2000.techtarget.com/tip/1,289483,sid1_gci842575,00.html _____________________________________________________________________ ******** Network Management/VoIP/Wireless strategies revealed ******* SearchNetworking.com hosts the Networking Decisions conference in Chicago, October 16-18. Sessions focus not only on essential network management strategies, but feature critical insight on VoIP and wireless. You find out how to best prepare for these technologies now so you won't get left behind, the benefits to gain/pitfalls to avoid, plus the real ROI for your organization. >> Get the full story right here: http://searchWin2000.com/r/0,,4678,00.htm?networkingdecisions ___________________________________________________________________ IMPORTANT MESSAGES AND LINKS: =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= USING ISA SERVER TO CREATE VPN GATEWAYS | Live Webcast Who: Dr. Tom Shinder, author When: Aug. 22 at 01:00 PM EDT (17:00 GMT) Find out how network and system admins can replace expensive hardware with a powerful and stable software VPN gateway by integrating ISA Server and Windows 2000 VPN Server. >> CLICK to pre-register... http://searchwin2000.techtarget.com/webcasts/0,289675,sid1,00.html =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= OOPS! TRUE IT BLOOPER #56: A BAD PENNY | Quick Hit No matter how many reference checks, supervisor interviews and in-person interviews, no IT manager knows what he's getting until he leaves the office in the new hire's hands. In this true IT blooper, an administrator who had checked and double checked his new employee's references finally felt comfortable taking a vacation -- it was a short one. >> CLICK for the full article... http://searchwindowsmanageability.techtarget.com/originalContent/0,289142,sid33_gci845431,00.html =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= ANTIVIRUS | Best Web Links Get the most out of your antivirus software and discover additional ways you can protect yourself from viruses, worms and Trojan horses with these Best Web Links. http://searchwin2000.techtarget.com/bestWebLinks/0,289521,sid1_tax560,00.html =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= WIN A SONICBLUE RIO 600 MP3 PLAYER! | Tip of the Month Contest Participate in our user tip contest -- we can't post them if you don't submit them! Rack your brain and strut your stuff -- You could win a SONICblue Rio 600 Digital Audio Player. Check out the prize, see previous winners and submit your tip here: http://searchwin2000.techtarget.com/tipsPrize/0,289492,sid1_prz827457_cts836249,00.html ___________________________________________________________________ ********************* SEARCHWIN2000 CONTACTS ********************** TIP MAILBOX, (mailto:[EMAIL PROTECTED]) >> Send feedback on tips and ideas for new tip content. ____________________________________________________________________ MARILYN COHODAS, Site Editor (mailto:[EMAIL PROTECTED]) >> Send me your original articles and best practices. ____________________________________________________________________ DAVID GABEL, Executive Tech Editor (mailto:[EMAIL PROTECTED]) >> Send me your technical tips and tip ideas. ____________________________________________________________________ MARGIE SEMILOF, Senior News Writer (mailto:[EMAIL PROTECTED]) >> Send me your news and story ideas. ____________________________________________________________________ CHRISTINE POLEWARCZYK, Assistant Editor (mailto:[EMAIL PROTECTED]) >> Send me your ideas for online event and discussion day topics. ____________________________________________________________________ DAVID PYE, Assistant Editor (mailto:[EMAIL PROTECTED]) >> Send me your tips, white papers and favorite Web sites. ____________________________________________________________________ MIKE KELLY (mailto:[EMAIL PROTECTED]) >> Sponsor this or any other TechTarget newsletter. ____________________________________________________________________ ____________________________________________________________________ ********************* ABOUT THIS NEWSLETTER ************************ Created by TechTarget (http://www.techtarget.com) TechTarget - The Most Targeted IT Media Copyright 2002, All Rights Reserved. Unsubscribe from 'Windows Security Tips' - Simply Reply to this Email with REMOVE within the Body or Subject > or - Go to: http://searchWin2000.techtarget.com/register - Log in to edit your profile. - Click on the link to Edit email subscriptions. - Uncheck the box next to the newsletter you wish to unsubscribe from. - When finished, click "Save Changes to My Profile."
