Windows Server Hardening

Discussion in 'Server Security' started by Venkatesh [MS India Community Star], Mar 20, 2009.

  1. Folks,

    Can someone suggests procedures that a administrator needs to follow for
    hardening servers?

    I understand the hardening procedures varies depending upon the role of the
    server e.g Windows 2K3 servers hosting exchange, Sharepoint, SQL database,
    Activedirectory etc.

    Googling results in plethora of links on this topic but I need clear and
    precise steps for better and easier understanding for implementation. Not
    sure if this is the right forum to post this question. Any help you provide
    is greatly appreciated.

    Cheers,
    Venky
     
    Venkatesh [MS India Community Star], Mar 20, 2009
    #1
    1. Advertisements

  2. What are you hardening the server for? Internal or external attacks?
    Follow best practices of the software installed on the server, keep it
    updated and patched, OS and software. Firewall and virus software. Beyond
    that you should contract someone to come out and scan your network
    internally and externally, provide a report of their findings and they
    should also detail how to secure your enviornment. Then test their
    suggestions to ensure their suggestions don't break anything.

    hth
    DDS

    "Venkatesh [MS India Community Star]"
     
    Danny Sanders, Mar 20, 2009
    #2
    1. Advertisements

  3. Depending on your definition of "hardening", here is where we start:
    http://iase.disa.mil/stigs/stig/index.html

    http://iase.disa.mil/stigs/checklist/index.html
    for checklists

    http://iase.disa.mil/stigs/SRR/index.html
    for scripts for verifying the settings

    It may be overkill in a commercial environment, but...


    Mike
     
    Special Access, Mar 21, 2009
    #3
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.