=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= SEARCHWIN2000.COM | Security Administration Tip Feb. 4, 2003
Essential tools and advice for the security-focused administrator. More tips: http://searchwin2000.techtarget.com/tips/ =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= FROM OUR SPONSORS: - FREE guide, "Securing Your Web Site for Business" http://searchWin2000.com/r/0,,9737,00.htm?freeguide - Sign up for our free Administrator Tip newsletter! http://searchWin2000.techtarget.com/OptIn/1,290894,sid1,00.html?cid=&em=&tid=132&FE=1 =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= IN THIS ISSUE | Table of Contents 1. SECURITY TIPS - How to handle anonymous users - Ten steps to low-cost wireless LAN security - Disable unused adapters - Ask Roberta Bragg: Someone's trying to flood our server! 2. IMPORTANT ANNOUNCEMENTS AND LINKS - Exclusive Article: Tiny toolmaker saves admins big money - IT Top 10: Steps to a strong security plan - Featured Topic: Know-IT-All admin challenge -- the sequel - Tip Contest: New month, new contest -- win wireless headphones! ____________________________________________________________________ Sponsored by: VeriSign - The Value of Trust Get the strongest server security 128-bit SSL encryption! Download VeriSign's free guide, "Securing Your Web Site for Business" and learn everything you need to know about using SSL to encrypt your e-commerce transactions for serious online security. >> Get your FREE guide now: http://searchWin2000.com/r/0,,9737,00.htm?freeguide ____________________________________________________________________ HOW TO HANDLE ANONYMOUS USERS | by Tom Lancaster If you're administering a Windows 2000 network, and you are wondering how to set up your groups for various file and print permissions, keep in mind that the "anonymous user" or "null connection" is a member of the Everyone group. This means that a null session connection can do anything that the Everyone group is permitted to do, which is potentially very dangerous. Generally speaking, if you are concerned about security, you should not be using the Everyone group in the first place -- and the anonymous account should be disabled. >> CLICK for the full tip... http://www.searchWin2000.com/tip/1,289483,sid1_gci877863,00.html =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= TEN STEPS TO LOW-COST WIRELESS LAN SECURITY | by Robert Scheier Let me guess: Despite your best efforts to stop them, users are hooking low-cost 802.11b (Wi-Fi) access points (APs) to the corporate network. And, despite your best efforts, your CFO has zero interest in buying the tools you really need to secure these wireless LANs. Here, then, are some relatively simple, low-cost ways to boost the security of your wireless LANs. They're not perfect, but they do provide at least a first line of defense. >> CLICK for the full tip... http://searchwin2000.techtarget.com/tip/1,289483,sid1_gci846100,00.html =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= DISABLE UNUSED ADAPTERS | by James Michael Stewart As growing numbers of corporations deploy wireless LANs with 802.11a or 802.11b, Windows users are finding more Network Interface Cards in their notebook computers. Generally the network cards that require cables but don't have cables attached are harmless. However, if you or users you support take your laptops home and plug the Ethernet adapter into a cable modem, this does not disable any wireless LAN adapters you may have installed. This means that your laptop may be vulnerable to a network-based attack. >> CLICK for the full tip... http://searchwin2000.techtarget.com/tip/1,289483,sid1_gci853861,00.html =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= SOMEONE'S TRYING TO FLOOD OUR SERVER! | Ask Roberta Bragg Dear Roberta: We have Windows 2000 server, IIS 5 SP3 with all current hotfixes. We have around 600 sites running on it. We also implemented IP filtering. Our open ports are 20, 21, 80, 443, 1433 and 3389. Recently, we have been having problems with someone trying to flood our server. Our ports get stopped one by one. I am unable to connect using Terminal Services, and I don't have any other solutions besides physically rebooting it. >> CLICK here for Bragg's expert answer... http://searchwin2000.techtarget.com/ateQuestionNResponse/0,289625,sid1_cid513305_tax285120,00.html For more expert advice, sign up to receive SearchWin2000.com's "Tips from our experts" biweekly newsletter. Just one click will automatically activate your free subscription: http://searchWin2000.techtarget.com/OptIn/1,290894,sid1,00.html?cid=457574&em=&tid=3107&FE=1 ___________________________________________________________________ ADMINISTRATOR TIP NEWSLETTER | Sign up for free SearchWin2000.com's Administration Tip is a free weekly newsletter that draws off the knowledge of experienced users, authors and other experts to provide IT professionals with guidance in being an effective network admin. >> Click here to auto-activate your subscription: http://searchWin2000.techtarget.com/OptIn/1,290894,sid1,00.html?cid=&em=&tid=132&FE=1 ___________________________________________________________________ IMPORTANT MESSAGES AND LINKS: =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= TINY TOOLMAKER SAVES ADMINS BIG MONEY | Exclusive Article You just don't need an elephant gun to kill an ant. By the same token, IT administrators may not need a large and expensive system management tool to get basic information about the health of their Windows servers. You can pay a mint for tools that monitor your servers, but at least one small software company offers products that are far less "minty" and still deliver the goods. >> CLICK for the full article... http://searchwindowsmanageability.techtarget.com/originalContent/0,289142,sid33_gci877730,00.html Do you have a specific question about an admin utility? Consult our Management Tools and Solutions expert, Serdar Yegulalp! Click here to ask him a question: http://searchwindowsmanageability.techtarget.com/ateAnswers/0,289620,sid33_tax288093,00.html. =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= STEPS TO A STRONG SECURITY PLAN | IT Top 10 Devising one catch-all security planning checklist that every type of company could use is well nigh impossible. The need for a baseline guide, however, is great, so we asked a security expert to share his security checklist. http://searchwindowsmanageability.techtarget.com/originalContent/0,289142,sid33_gci786663,00.html =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= KNOW-IT-ALL ADMIN CHALLENGE -- THE SEQUEL | Featured Topic We here at SearchWin2000.com don't want you to see you sit back on your laurels. That's why every ten weeks we combine all of our most recent Administrator Know-IT-All Quizzes into the KIA Challenge! Pop some corn and turn off your cell phone -- it's time for part two. Let's hope this sequel is more 'Aliens' and less 'Predator 2'. Are you sitting comfortably? Action! http://searchwin2000.techtarget.com/featuredTopic/0,290042,sid1_gci877478,00.html =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= NEW MONTH, NEW CONTEST -- WIN WIRELESS HEADPHONES! | Tip Contest I'm not going to lie to you, folks -- we need your tips. I am ready to try hypnosis, so concentrate on your nearest flashing cursor. You are feeling sleepy... you are also feeling like racking your brain for your best tips, tricks and shortcuts. And now, you feel like submitting them for a chance to win Sennheiser RS65 900MHz wireless headphones! Cluck like a chicken, check out the prize and then submit your tip here: http://searchwin2000.techtarget.com/tipsSubmit/1,289485,sid1,00.html ___________________________________________________________________ ********************* SEARCHWIN2000 CONTACTS ********************** TIP MAILBOX, (mailto:[EMAIL PROTECTED]) >> Send feedback on tips and ideas for new tip content. ____________________________________________________________________ ED PARRY, News Editor (mailto:[EMAIL PROTECTED]) >> Send me your news, press releases and product announcements. _____________________________________________________________________ MARILYN COHODAS, Senior Site Editor, SearchWin2000.com & SearchWindowsManageability.com (mailto:[EMAIL PROTECTED]) >> Send me your original articles and best practices. _____________________________________________________________________ CATHERINE KETCHER, Site Editor, SearchWin2000.com & SearchWindowsManageability.com (mailto:[EMAIL PROTECTED]) >> Send me your bloopers and Featured Topic ideas. _____________________________________________________________________ MARGIE SEMILOF, Senior News Writer (mailto:[EMAIL PROTECTED]) >> Send me your news and story ideas. _____________________________________________________________________ MATT DEBELLIS, News Writer (mailto:[EMAIL PROTECTED]) >> Send me your Windows manageability news and press releases. _____________________________________________________________________ CHRISTINE POLEWARCZYK, Associate Editor (mailto:[EMAIL PROTECTED]) >> Send me your ideas for online event and discussion day topics. _____________________________________________________________________ DAVID PYE, Assistant Editor (mailto:[EMAIL PROTECTED]) >> Send me your tips and true IT bloopers. _____________________________________________________________________ DANA MCCURLEY, Assistant Editor (mailto:[EMAIL PROTECTED]) >> Send me your favorite Web sites and white papers. _____________________________________________________________________ MIKE KELLY (mailto:[EMAIL PROTECTED].) >> Contact me to sponsor this or any other TechTarget newsletter. ____________________________________________________________________ ********************* ABOUT THIS NEWSLETTER ************************ Published by TechTarget (http://www.techtarget.com) TechTarget - The Most Targeted IT Media Copyright 2003 TechTarget. All rights reserved. Unsubscribe from 'Windows Security Tips' - Simply Reply to this Email with REMOVE within the Body or Subject > or - Go to: http://searchWin2000.techtarget.com/register - Log in to edit your profile. - Click on the link to Edit email subscriptions. - Uncheck the box next to the newsletter you wish to unsubscribe from. - When finished, click "Save Changes to My Profile."
