| » About NACS |
Sunday October 12th, 2008 » Fall Quarter, Week 3 |
|
|
| » About NACS |
Sunday October 12th, 2008 » Fall Quarter, Week 3 |
|
|
|
|
Simple
explanations on the latest security issues.
TruSecure Hot
or Not Important UCI Security tools and resourcesUCINet Support Tools
Patching and UpdatesImportant industry resources |
NACS recognizes the need to properly configure and maintain your Microsoft products. From our experiences UCI's biggest software security issues are usually directly related to misconfigured or improperly supported software installations. The following articles or resources may be of some assistance to you, but if you feel there is any further need for help you may contact NACS for direct assistance. Complex situations and advanced resolution needs can be addressed via recharge if you wish. Microsoft Security BasicsSetup GuidesMicrosoft OS Security Primer- **Simple Windows NT/2000/XP install guides** Windows XP Setup Guide- From the National Institute of Standards and Technology NSA Windows 2003 Security and Hardening Guidelines- This is the most recent version of their guide. Password SecurityPassword Facts- Basic explanations of how simple and complex passwords are defined and exploited. Password Policies and Uses- What the domain password policies can mean and how to leverage them for maximum use. Operating System Configuration and Lock DownMicrosoft Solutions for Securing Windows 2000 Server- A comprehensive guide from MS with typical scenarios, but excellent points to consider when designing a new domain or system configuration. Administrative Workstation Security- basic security for administrators desktop computers. Port Filtering for Windows 2000 Server- How to secure Windows 2000 without a client based firewall (Windows 2003 has a built in firewall- ICF) Securing your IIS 5.0 Web Server - Basic configuration of IIS 5.0 Domain Security and PoliciesLogins Screen Warnings- You must have a administrative challenge page to explicitly detail official use policies prior to login attempts Security Risk Management- Chapter 4 from the Securing Windows 2000 Server guide (above) Incident Response and ReportingIncident Response Part I- Basics and concepts for looking at network security issues, plus planning tips for possible problems that may occur Incident Response Part II- Simple but formal guide to planning for Incident Response scenarios. Auditing and Incident Response- Chapter 9 of from the Securing Windows 2000 Server guide (above) Responding to Incidents- Chapter 10 of from the Securing Windows 2000 Server guide (above) Hacking and Social Engineering Part I- Your Help Desk just allowed your network to be broken into, how did that happen? Hacking and Social engineering Part II- Your Help Desk still needs to improve, but how does that happen? Technical Solutions to Scenarios That Have Occurred On Campus
Microsoft TechNet articles that affect UCI administrators
A List of the Windows 2000 Domain Controller Default Ports (Q289241)- describes ports that you need open on a DC in case you filter access to systems through a router or firewall. IIS Checklist - While you should never have a IIS server as a member of your domain, using Outlook Web Access might make this necessary. Windows 2003 Server Installation Checklist - The latest information on Windows 2003. Understanding Windows Domian Controllers Log Files- The basics for knowing your system logs. Best Practice Methods for Windows 2000 Domain Controller Setup - This is a roadmap for setting up a DC. Dcpromo_exe Does Not Create Records in the DNS Zone - This might occur when you run your own DDNS and not NACS's campus service. How Domain Controllers Are Located in Windows - A good way to understand the process of how systems work with Windows 2000/XP. Troubleshooting Common Active Directory Issues in Windows 2000 - Simple methods of tracking down issues. DNS Updates Do Not Work if DHCP Client Service Stops - This is something we found in testing that will save you from headaches later. |
|
