RE: Hardening Windows 2003 Server and Exchange Server

["Martinez Azair Francisco" <francisco.azair () infonet net mx>]

Or you can use SCW (security configuration wizard) from MS, all that you
can do with security guide but a lot of options and with a tool.

http://www.microsoft.com/windowsserver2003/technologies/security/configw
iz/default.mspx

Regards
FMA

-----Original Message-----
From: Sagiko [mailto:sagiko () gmail com] 
Sent: Viernes, 12 de Agosto de 2005 11:42 p.m.
To: Kalpin Erlangga Silaen
Cc: security-basics () securityfocus com
Subject: Re: Hardening Windows 2003 Server and Exchange Server

hi,
Yup the windows 2003 security guide is the primary source you should
look at. Download the zip package from microsoft and they includes a
number of sample security templates which tailer for different roles
which the 2003 server will be used as, such as domain controller,
bastion host etc. The Security guide has detailed steps on modifying
and implementing this templates. (serveral clicks away as usual).

BTW just a reminder that sometimes the security templates are so
detailed and if the application running on the server was not
developed in a similar hardened environment. Various tricky small
issues will be appear here and there.

regards,
Rick Zhong Liming

============================================
Welcome to SINgapore <IN>FOSECurity Interest Group at:
www.sinfosec.org 
 

On 8/10/05, Kalpin Erlangga Silaen <kalpin () solonet co id> wrote:
> Hello security-basics,
>
>  I have 2 Domain Controllers + 1 Exchange Server + 1 ISA Proxy 2004
>  and GFI MailEssentials for Antispam and TrendMicro ScanMail for
>  Exchange as Antivirus.
>  Is there any sites contains tutorial how to "hardening" all of them
>  ? Also I need antispam for all clients with centralized in my
>  server.
>
> --
> Best regards,
>  Kalpin                          mailto:kalpin () solonet co id