Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Host Hardening Chapter 6 Copyright 2003 Prentice-Hall.

Published byMatilda Gibson Modified over 9 years ago

Similar presentations

Presentation on theme: "1 Host Hardening Chapter 6 Copyright 2003 Prentice-Hall."— Presentation transcript:

1

2 1 Host Hardening Chapter 6 Copyright 2003 Prentice-Hall

3 2 Figure 6-1: Hardening Host Computers The Problem  Computers installed out of the box have known vulnerabilities Not just Windows computers  Hackers can take them over easily  They must be hardened—a complex process that involves many actions

4 3 Figure 6-1: Hardening Host Computers Elements of Hardening  Physical security (Chapter 2).  Secure installation and configuration  Fix known vulnerabilities  Turn off unnecessary services (applications)  Harden all remaining applications (Chapter 9)

5 4 Figure 6-1: Hardening Host Computers Elements of Hardening  Manage users and groups  Manage access permissions For individual files and directories, assign access permissions specific users and groups  Back up the server regularly  Advanced protections

6 5 Figure 6-1: Hardening Host Computers Security Baselines Guide the Hardening Effort  Specifications for how hardening should be done  Different for different operating systems  Different for different types of servers (webservers, mail servers, etc.)  Needed because it is easy to forget a step

7 6 Figure 6-1: Hardening Host Computers Server Administrators Are Called Systems Administrators

8 7 Figure 6-1: Hardening Host Computers Windows Computers  Microsoft Network Operating Systems (NOSs) LAN Manager (LANMAN) Windows NT Server Windows 2000 Server Windows 2003 Server (called.NET in the book)  Graphical user interface looks like client versions to ease learning (Figure 6-2)

9 8 Figure 6-2: Windows 2000 Server User Interface

10 9 Figure 6-1: Hardening Host Computers Windows Computers  Administrative Tools Group under Programs has Microsoft Management Consoles (MMCs) (Figure 6-3) Used to conduct most administrative actions Can add snap-ins for specific functionality

11 10 Figure 6-3: Computer Management Microsoft Management Console (MMC) System Tools snap-in

12 11 Figure 6-1: Hardening Host Computers Windows Computers  Windows 2000 introduced hierarchical domain structure with Active Directory Domain is a collection of resources Domain contains one or more domain controllers, member servers, client PCs Group policy objects (GPOs) on a domain controller can implement policies throughout a domain

13 12 Figure 6-1: Hardening Host Computers UNIX  Many versions of UNIX  LINUX is a set of versions for PCs—there are several different distributions  User can select the user interface—GUI or command-line interface (CLI)  CLIs are called shells (Bourne, BASH, etc.)  CLIs have picky syntax, capitalization, and spacing

14 13 Figure 6-1: Hardening Host Computers Internetwork Operating System (IOS)  For Cisco Routers, Some Switches, Firewalls Other Host Operating Systems  Macintosh  Novell NetWare  Firewalls  Even cable modems with web-based management interfaces

Download ppt "1 Host Hardening Chapter 6 Copyright 2003 Prentice-Hall."

Similar presentations

By Rashid Khan Lesson 5-Directory Assistance: Administration Using Active Directory Users and Computers.

By Rashid Khan Lesson 5-Directory Assistance: Administration Using Active Directory Users and Computers.
Case Study: Pat Lee’s Home PC Network Chapter 1a Panko’s Business Data Networks and Telecommunications, 6th edition Copyright 2007 Prentice-Hall May only.

Case Study: Pat Lee’s Home PC Network Chapter 1a Panko’s Business Data Networks and Telecommunications, 6th edition Copyright 2007 Prentice-Hall May only.
Windows 2003 Server. Windows 2003 Server Contents Fitur Windows 2003 Server Installation And Configuration Windows Management Resource  User Management.

Windows 2003 Server. Windows 2003 Server Contents Fitur Windows 2003 Server Installation And Configuration Windows Management Resource  User Management.
Module 6: Configuring Windows XP Professional to Operate in a Microsoft Network.

Module 6: Configuring Windows XP Professional to Operate in a Microsoft Network.
1 Figure 6-16: Advanced Server Hardening Techniques Reading Event Logs (Chapter 10)  The importance of logging to diagnose problems Failed logins, changing.

1 Figure 6-16: Advanced Server Hardening Techniques Reading Event Logs (Chapter 10)  The importance of logging to diagnose problems Failed logins, changing.
Host Hardening (March 21, 2011) © Abdou Illia – Spring 2011.

Host Hardening (March 21, 2011) © Abdou Illia – Spring 2011.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 5: Managing File Access.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 5: Managing File Access.
Chapter Nine NetWare-Based Networking. Objectives Identify the advantages of using the NetWare network operating system Describe NetWare’s server hardware.

Chapter Nine NetWare-Based Networking. Objectives Identify the advantages of using the NetWare network operating system Describe NetWare’s server hardware.
3.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 3: Introducing Active Directory.

3.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 3: Introducing Active Directory.
15.1 © 2004 Pearson Education, Inc. Exam 70-294 Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.

15.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 5: Managing File Access.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 5: Managing File Access.
11 ADMINISTERING MICROSOFT WINDOWS SERVER 2003 Chapter 2.

11 ADMINISTERING MICROSOFT WINDOWS SERVER 2003 Chapter 2.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 4: Implementing and Managing Group and Computer Accounts.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 4: Implementing and Managing Group and Computer Accounts.
Understanding Networks I. Objectives Compare client and network operating systems Learn about local area network technologies, including Ethernet, Token.

Understanding Networks I. Objectives Compare client and network operating systems Learn about local area network technologies, including Ethernet, Token.
Hands-On Microsoft Windows Server 2003 Administration Chapter 3 Administering Active Directory.

Hands-On Microsoft Windows Server 2003 Administration Chapter 3 Administering Active Directory.
Chapter 1 Introducing Windows Server 2012/R2

Chapter 1 Introducing Windows Server 2012/R2
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 4: Implementing and Managing Group and Computer Accounts.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 4: Implementing and Managing Group and Computer Accounts.
3.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 3: Introducing Active Directory.

3.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 3: Introducing Active Directory.
Guide to MCSE 70-290, Enhanced 1 Activity 9-1: Creating a Group Policy Object Using the MMC Objective: To create a GPO using the Group Policy Object Editor.

Guide to MCSE , Enhanced 1 Activity 9-1: Creating a Group Policy Object Using the MMC Objective: To create a GPO using the Group Policy Object Editor.
Case Study: Pat Lee’s Home PC Network Chapter 1a Updated January 2007 Panko’s Business Data Networks and Telecommunications, 6th edition Copyright 2007.

Case Study: Pat Lee’s Home PC Network Chapter 1a Updated January 2007 Panko’s Business Data Networks and Telecommunications, 6th edition Copyright 2007.

Similar presentations

Ads by Google