=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= SEARCHWIN2000.COM | Security Administration Tip Nov. 12, 2002
Essential tools and advice for the security-focused administrator. More tips: http://searchwin2000.techtarget.com/tips/ =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= FROM OUR SPONSORS: - Secure all your Web servers now - with a proven 5-part strategy http://searchWin2000.com/r/0,,7403,00.htm?freeguide =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= IN THIS ISSUE | Table of Contents 1. SECURITY TIPS - Cope with Internet scripting annoyances 2. IMPORTANT ANNOUNCEMENTS AND LINKS - Ask Roberta Bragg: Methods of delivering a secure .NET app - Exclusive Article: SharePoint Portal Server falls short - Featured Topic: Take the Know-IT-All challenge - Webcast Tomorrow: SQL Server security best practices - Tip Contest: New month, big prize! The tip contest is now live! ____________________________________________________________________ Sponsored by: VeriSign - The Value of Trust Secure all your Web servers now - with a proven 5-part strategy. The FREE Server Security Guide shows you how: - DEPLOY THE LATEST ENCRYPTION and authentication techniques - DELIVER TRANSPARENT PROTECTION with the strongest security without disrupting users. And more. >> Get your FREE Guide now: http://searchWin2000.com/r/0,,7403,00.htm?freeguide ___________________________________________________________________ COPE WITH INTERNET SCRIPTING ANNOYANCES | by Tom Lancaster One of the most annoying things Web surfers encounter are Web sites that open new windows by themselves, or maximize the existing window to display ads or otherwise monopolize your attention. The method usually used to accomplish this is JavaScript or ActiveX, with the former being much more common in my experience. JavaScript and ActiveX, if left unchecked can do some pretty nasty things to your computer, particularly since there are so many exploits around. So you want to protect yourself from these potential security hazards. However, there are so many good sites now that use JavaScript for something useful, that turning it off disables half of why you use the Internet in the first place. Perhaps the best way to deal with this solution is the zone feature built into Microsoft's Internet Explorer, which hardly anyone ever uses. Zones are simple to understand: the "Internet" is all sites that aren't in one of the other three zones. "Local intranet" is for stuff inside your firewall or company. "Trusted sites" and "Restricted sites" are buckets for you to configure. This is easy to do because, if you're like most surfers, you've got around 10 or 20 sites that you read every day, which are usually book-marked, then you follow links from these sites to hundreds of other sites. If this sounds like you, then click Tools -> Options and then the "Security" tab in Internet Explorer. Next, click "Trusted sites" and then the "Sites" button. Add the URLs from your bookmark page to this zone. This allows you to set different security attributes for each of the four zones. For trusted sites, you can leave it default, or modify it if some of the sites require something special. Do this by pressing the "Custom Level..." button at the bottom of the Options dialog box. Now, you can adjust the Internet zone's settings to disable or prompt you before any JavaScript is executed, by clicking the "Internet" icon and then pressing the "Custom Level..." button. These settings won't bother your regular sites, since they're not in this zone anymore, but it will keep some new site from opening five new windows and maximizing them, or hiding your menu and tool bars, etc. >> Got an security tip of your own? Submit it today: http://searchwin2000.techtarget.com/tipsIndex/0,289482,sid1_tax283640,00.html ___________________________________________________________________ IMPORTANT MESSAGES AND LINKS: =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= METHODS OF DELIVERING A SECURE .NET APP | Ask Roberta Bragg Dear Roberta: I am a project manager who, until now, has been focused on software development. I am new to the networking infrastructure and security side of the house. My team will be responsible for the delivery of a Microsoft .NET application. They have asked us to deploy the system with security as the top priority. Could you please help me in getting up to speed by identifying the method, technologies and components on which I need to focus when researching best practices for infrastructure and network security for this system? >> CLICK here for Roberta Bragg's expert answer... http://searchwin2000.techtarget.com/ateQuestionNResponse/0,289625,sid1_cid497911_tax285120,00.html =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= SHAREPOINT PORTAL SERVER FALLS SHORT | Exclusive Article Rand Morimoto, a consultant and technology security adviser to President Bush, said Microsoft's SharePoint Portal works well only when used as one part of a larger collaboration and knowledge management system. >> CLICK for the full article... http://searchwindowsmanageability.techtarget.com/originalContent/0,289142,sid33_gci862115,00.html =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= TAKE THE KNOW-IT-ALL CHALLENGE | Featured Topic Got an itchy trigger finger, cowpoke? Well then maybe it's time you moseyed on over to the admin Know-IT-All Quiz round-up! Test your gumption against one of the most despicable IT desperados of them all -- Mr. Know-IT-All! >> CLICK here to explore this featured topic... http://searchwin2000.techtarget.com/featuredTopic/0,290042,sid1_gci861842,00.html =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= SQL SERVER SECURITY BEST PRACTICES | Webcast Tomorrow Who: James Hamilton, SQL Server Architect When: Nov. 13 at 1 p.m. EST (18:00 GMT) Microsoft's SQL Server security architect James Hamilton and security guru Girish Chander share best practices for locking down your SQL Server database. >>CLICK to pre-register... http://searchwin2000.techtarget.com/webcasts/0,289675,sid1,00.html =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= NEW MONTH, BIG PRIZE! THE TIP CONTEST IS NOW LIVE! | Tip Contest My kingdom for some more Windows related tips! Too much is never enough, so keep them coming. -- a Xircom wireless Ethernet access point lies in the balance. Rack your brain and share your know-how with some fellow users. Read 'em, rate 'em and then submit your own for your chance to win: http://searchwin2000.techtarget.com/tipsHallOfFame/0,289489,sid1_prz764589_cts764586,00.html ___________________________________________________________________ ********************* SEARCHWIN2000 CONTACTS ********************** TIP MAILBOX, (mailto:tips@;searchwin2000.com) >> Send feedback on tips and ideas for new tip content. ____________________________________________________________________ MARILYN COHODAS, Site Editor (mailto:mcohodas@;techtarget.com) >> Send me your original articles and best practices. ____________________________________________________________________ CHRISTINE POLEWARCZYK, Associate Editor (mailto:cpolewarczyk@;techtarget.com) >> Send me your ideas for online event and discussion day topics. ____________________________________________________________________ DAVID PYE, Assistant Editor (mailto:dpye@;techtarget.com) >> Send me your tips, white papers and favorite Web sites. ____________________________________________________________________ DANA MCCURLEY, Assistant Editor (mailto:dmccurley@;techtarget.com) >> Send me your favorite Web sites and white papers. ____________________________________________________________________ MARGIE SEMILOF, Senior News Writer (mailto:msemilof@;techtarget.com) >> Send me your news and story ideas. ____________________________________________________________________ DAVID GABEL, Executive Tech Editor (mailto:dgabel@;techtarget.com) >> Send me your technical tips and tip ideas. ____________________________________________________________________ MIKE KELLY (mailto:mkelly@;techtarget.com) >> Sponsor this or any other TechTarget newsletter. ____________________________________________________________________ ____________________________________________________________________ ********************* ABOUT THIS NEWSLETTER ************************ Published by TechTarget (http://www.techtarget.com) TechTarget - The Most Targeted IT Media Copyright 2002 TechTarget. All rights reserved. Unsubscribe from 'Windows Security Tips' - Simply Reply to this Email with REMOVE within the Body or Subject > or - Go to: http://searchWin2000.techtarget.com/register - Log in to edit your profile. - Click on the link to Edit email subscriptions. - Uncheck the box next to the newsletter you wish to unsubscribe from. - When finished, click "Save Changes to My Profile."
