Educause Security Discussion mailing list archives

Previous By Date Next
Previous By Thread Next

Re: FW: Checklist for securing Windows XP systems

From: Brent Sweeny <sweeny () INDIANA EDU>
Date: Thu, 29 Jul 2004 10:03:43 -0500
what do your scripts do, exactly?  there are lots of options in
the NIST and NSA guides, and yours has type-of-use options so I
presume there are multiple classes of settings.   I tried it
with a non-administrator account and it doesn't seem to fail
very gracefully, and I'd hate to try it--even on a non-critical
system--with an admin account before I knew what it was doing.
        thanks.

On Thu, Jul 29, 2004 at 09:33:03AM -0500, Weeks, Calvin W. wrote:

We have used the NIST and the NSA guides over the past four years at the
University of Oklahoma and have found them to be very valuable to our
security efforts. We spent some time working with our public access
areas, labs, residential housing, and research community and have put
together a script that will automatically apply the NIST recommendations
to workstations. This version is our public version that we distribute
too our non-university owned workstations and you are welcome to use as
you wish:

http://security.ou.edu/distribution/OU_BP_Security_Scripts_2.exe
Hash Value:  bca4ef56f26e1e44d6082ab7416dfb7b

Please, test on a non production machine before using and pay attention
to comments when you run the script. This can be applied to Win 2000
Pro/Server, Win XP, and Win 2003; however we have found that you should
always apply the security settings manually on servers and we only use
this script for workstations. We are working on customizing scripts that
will work for servers, but you have to make a script for each type of
server that you have (i.e., webserver, file/print server, Domain
controller, DNS, DHCP, etc.)

If you of you have any questions you may contact myself or Jason Britton
(fulco () ou edu) and please, give us feedback for improvements to the
script.

Calvin Weeks, EnCE, CISSP, CISM
Director, OU Cyber Forensics Lab
University of Oklahoma
Phone:  405-325-8334
http://cfl.ou.edu <http://cfl.ou.edu/>
http://security.ou.edu <http://security.ou.edu/>


**********
Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at 
http://www.educause.edu/cg/.
Previous By Date Next
Previous By Thread Next

Current thread: