Re: How to Secure Windows? was How to Save the World

[Devdas Bhagat <devdas () dvb homelinux org>]

On 13/12/04 11:42 -0500, MHawkins () TULLIB COM wrote:
> Marcus,
>
> Oh how I wish we were back in the days of the 3270 controller and the Zilog
> Z80!
>
> But seriously, it has always been most annoying to me that with a few good
> books, the Internet, a few mentors and experience I have been able to keep
> very up to date and highly proficient at securing Unix (all flavors) and
> networks (all vendor flavors of routers, switches, firewalls etc) but
> Microsoft remains a black art where only third party vendors seem to be able
> to secure the platform.
>
> The books on Windows security are always generic rubbish and never give you
> the real nuts and bolts of how to actually secure Windows.

The O'Reilly book on Securing Windows NT and Windows 2000 for the
Internet is a useful checklist.
The NSA has additional guidelines as well.

> The Internet searches invariably turn up generic how to's as well that
> stink. And I have not yet met a Windows admin who knows enough (or took it

There were a few really clued people on the focus MS list on security
focus when I was a subscriber there (that was a good three years ago, so
YMMV). You should probably subscribe to that list and see if there is
any significant clue left.
<snip>

> Maybe someone can recommend a book, a link or a mentor or all three. I am
> sick of looking at Windows machines and KNOWING they are insecure.

<repeat> The O'Reilly book is good </repeat>.

Devdas Bhagat
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards