Hardening Windows Systems (Hardening) | 
 enlarge | Author: Roberta Bragg
Publisher: McGraw-Hill Osborne Media
Category: Book
List Price: $39.99
Buy New: $6.14
You Save: $33.85 (85%)
New (27) Used (19) from $4.18
Avg. Customer Rating:  10 reviews
Sales Rank: 240895
Media: Paperback
Edition: 1
Number Of Items: 1
Pages: 544
Shipping Weight (lbs): 2
Dimensions (in): 9.1 x 7.2 x 1.2
ISBN: 0072253541
Dewey Decimal Number: 005.8
UPC: 783254043398
EAN: 9780072253542
ASIN: 0072253541
Publication Date: May 11, 2004
Availability: Usually ships in 1-2 business days
|
| Also Available In:
|
| Similar Items:
|
| Editorial Reviews:
Product Description
“The definitive tool to learn what’s proper for Microsoft Windows systems. Roberta’s excellent guidance will easily help you build secure, resiliant systems.” --Steve Riley, Security Business and Technology Unit, Windows Division, Microsoft Corporation Take a proactive approach to network security by hardening your Windows systems against attacks before they occur. Written by security evangelist Roberta Bragg, this hands-on resource provides concrete steps you can take immediately as well as ongoing actions to ensure long-term security. Whether you have one Windows server or one hundred, you’ll get complete details on how to systematically harden your network from the ground up, as well as strategies for getting company-wide support for your security plan. With coverage of Windows 95/98/NT 4.0/2000/XP and Windows Server 2003, this book is an essential security tool for on-the-job IT professionals. Features a four-part hardening methodology: - Do This Now!--Checklist of immediate steps to take to lockdown your system from further attack
- Take It From The Top--Systematic approach to hardening your enterprise from the top down, focusing on authentication, access controls, borders, logical security boundaries, communications, storage, and administrative authority
- Once Is Never Enough!--Ongoing monitoring and assessment plan to keep your network secure, including patch management and auditing
- How to Succeed At Hardening Your Windows Systems--Strategies for getting budget approval, management buy-in, and employee cooperation for your security program
Roberta Bragg, CISSP, MCSE: Security, Security+, co-author of Network Security: The Complete Reference, instructor, and consultant, focuses on how to proactively deploy proven security principles to defend Windows systems from possible attack. Roberta is the Security Advisor columnist for MCP magazine, the Security Expert for searchWin2000.com, and writes for the Security Watch newsletter. Roberta is the series editor of McGraw-Hill/Osborne’s Hardening security series.
|
| Customer Reviews: Read 5 more reviews...
 Nice to get you up to speed, but lacking... March 30, 2007
Ok, so you want to secure your current, already (maybe poorly) implemented Windows networking environment. This may be the right book for you to get you on the path to better security. Note I did not say good security, I said better.
I bought the book Hardening Linux by James Turnbull published by APress. That book has what I wish Hardening Windows Systems would have: a comprehensive security strategy.
Instead, this book is nothing more than an overly wordy To-Do list with not a lot of information to tell you how to accomplish the To-Do list nor why you would even want to do the To-Do list to begin with (except for maybe chapter one, which was quite good, but still lacking).
If you have an existing, insecure Windows 2000/2003/XP networing environment and want to get started tightening up the ship, this book may be good to get you more secure quickly.
If you really want to lock down your existing installation, or you are starting a new Microsoft nework installation and want a comprehensive strategy for deploying a secure environment from the get-go, this book is NOT for you.
 Very Practical and Potent November 22, 2005
1 out of 2 found this review helpful
I've looked into a few Hardening Windows type of books and I was not satisfied. I found Unix/Linux equivalents to be very practical and valuable, and most to the Windows books to be just general guides of common obvious solutions mentioned in core MSCE training. Where is the real tangible stuff?
Well, I am happy to say that this book sets itself apart in having very potent and practical solutions. To detail all the chapters and their qualities would make this review humungous, so I'll mention one chapter...
One chapter that I found was really profound was "Harden Windows Using PKI" in chapter 12. It introduces the idea of having an offline root-CA and a subordinate "Enterprise CA", so in case your private key gets stolen, so that you can more easily rebuild the infrastructure. This is important as an "Enterprise CA" is integrated into Active Directory, making replacing it unfathomable. The instructions for how to do this were just awesome, but I do wish there was some further explanations as to why certain steps are needed. Some group of instructions are just plopped down without any explanations as to what these set of instructions are for. Beside that bit, this chapter is inspirational, and after this, one can delve into securing mail traffic (IMAPS, POPS, S/MIME, Exchange OWA), web traffic (HTTPS), and general TCP/IP (IPSec, VPNs).
Bottom line, anyone concerned about security for Windows, cannot pass up this book.
Excellent book on securing Windows March 2, 2005
15 out of 17 found this review helpful
Does a week ever go by without a major Windows vulnerability coming to light? It is evident that, prior to Windows XP Service Pack 2, the operating system was geared to file and printer sharing, not security. Among security professionals, the common view is that the best way to secure Windows is to use a more secure operating system such as Linux.
Windows isn't going away, however, and probably millions of businesses will continue to use that platform. These systems should be hardened against attack, a task made easier by this resourceful and practical book.
Hardening Windows Systems provides users a solid guide to implementing security on various Windows operating systems, attempting to close the many holes that have plagued Windows. Chapters cover infrastructure, physical security, communications, security policies, and more.
Valuable security-setting tables and checklists are offered for a vast number of different Windows security services, settings, and parameters. These tables and checklists ensure a systematic approach to system hardening.
Some readers might be overwhelmed by the prodigious number of modifications needed to ensure that a Windows host is indeed secure. Making those modifications is a dirty job, but this book makes it a lot less messy.
 A good overview of Windows Security February 13, 2005
6 out of 7 found this review helpful
I was very pleased with this book. One of the problems I've had with most books on network security is that they go on and on about theory and then leave it to you to turn their high level discussion into actual practice.
That's not the case with this book, this is a book where you can literally sit down with it open, and configure a system step by step using what is provided. The author's style is very matter of fact in that there is very little of the "chatty tone" that (in my opinion) takes up so much valuable space in other books. This book is straightforward: This is the problem - This is how you fix it.
There's also a healthy dose of screen shots which never hurts.
I didn't give it 5 stars for two, fairly benign reasons. (1) It covers all versions of Windows including Windows 98, Windows NT 4, Windows 2000, Windows 2003, and Windows XP. So, any given reader is bound to find a good chunk of the book doesn't apply to them. (2) A little more of the theoretical side might have been good. It's great that this book is so task oriented but I think that someone who hadn't read other security books in the past might not grasp why the book suggests certain things.
Nonetheless, I'd recommend this book to anyone interested in Windows Security.
Invaluable Information For Windows Administrators January 29, 2005
6 out of 6 found this review helpful
A trip to the local book store will quickly show you that there is no shortage of books on the subject of network security. In fact, Roberta Bragg, the author of Hardening Windows Systems, has written some of the other contributions to this genre as well. So, why another one?
Osborne / McGraw-Hill publishing, publishers of the Hacking Exposed series, introduced the Hardening Series of books, to add a fresh perspective and approach to network security books. Rather than simply regurgitating the same theoretical material and security best practice details, these books provide more nitty-gritty, action-oriented information.
In the first chapter, Bragg provides a list of ten things you should do immediately to secure your Windows systems. This helps get you very quickly from cracking the cover to getting actionable information you can implement now.
Working in I.T. though, I think that the last section is possibly more valuable than the information about securing the system. Getting budget approval, management support and user cooperation are all essential to securing the network and this information is invaluable.
I like the structure and approach of this book and recommend it for anyone supporting a Windows-based network.
(...)
|
|
|
