Windows security is never far from the headlines. Nor is it far from the minds of network and system administrators. If you're one of them, you'll sleep better at night if you read this systematic guide to hardening your Win2K servers -- and follow the rules and procedures it teaches you.
Author "Anonymous" identifies five key factors that make Windows 2000 vulnerable: the human factor (neither users nor sysadmins are perfect); Windows 2000's attempt to be all things to all people; Win2K's scattered and inadequate monitoring tools; its enormity and complexity; and the relative insecurity of "out-of-the-box" installations. This book addresses all five.
It offers the best coverage we've seen on installing Windows 2000 for maximum security. "Anonymous" lists nine questions you need to answer before you break the shrink wrap; then points out some not-so-obvious pitfalls. (Giving your server an obvious name, such as WEBSERVER, gives intruders a head start.) On the companion web site, the author provides an unattended install script that excludes most Win2K features that cause security holes. (The rest you'll have to eliminate or secure manually. "Anonymous" shows you how.)
This book covers the waterfront. There's detailed coverage of password security (it's stronger, but any backward-compatible LAN Manager passwords are still plenty vulnerable); and Windows 2000 services (they have system privileges, and if a hacker can find a way to exploit one, he can often gain the same privileges). There are chapters on trojans and backdoors; security policy and configuration; and Active Directory. There are more than 150 pages on exploiting and protecting Web and other Internet services. And there's a full section on encryption. (Sure, you're encrypting the folder containing those secret corporate takeover plans -- but are you encrypting the folder in the place where Microsoft Word places all the temporary files it's creating as you're scheming? Hmmm...)
This book is the real deal. If you're responsible for a Windows 2000 server, you must know this stuff. (Bill Camarda)
Bill Camarda is a consultant, writer, and web/multimedia content developer with nearly 20 years' experience in helping technology companies deploy and market advanced software, computing, and networking products and services. He served for nearly ten years as vice president of a New Jerseybased marketing company, where he supervised a wide range of graphics and web design projects. His 15 books include Special Edition Using Word 2000 and Upgrading & Fixing Networks For Dummies®, Second Edition.