SECURITY

Server 2008 : Hardening Server Security

- Give Up Coffee For Beautiful Breasts

- Nikon D3500 Digital SLR Camera

- Sony Alpha A58 Digital SLT Camera

- Panasonic HX-WA30 - A Pistol-Grip Full HD Camcorder

2/25/2011 10:30:49 PM

Previous versions of Windows Server required a great deal of configuration after installation to “harden” the security of the server and ensure that viruses and exploits would not overwhelm or disable the server. The good news with Windows Server 2008 R2 is that, by default, many less commonly used services are turned off. In fact, a fresh installation of Windows Server 2008 R2 only has those services enabled that are vital for the OS to run properly, and everything else must be enabled by running Server Manager. In addition, by default an intelligent firewall is enabled, and only those services that absolutely need to run are allowed through the firewall.
Subsequently, in Windows Server 2008 R2, it is important to first define which roles a server will utilize and then to turn on only those services that are necessary, with the use of Server Manager, which automates the deployment of server roles.

Defining Server Roles

Depending on the size of an organization, a server might be designated for one or multiple network roles. In an ideal world, a separate server or servers would be designated to handle a single role, such as DHCP server or DNS server. Even smaller organizations can take advantage of virtualization technology such as Windows Server 2008 R2’s Hyper-V server virtualization platform to provision multiple dedicated guests on a smaller number of physical hosts.

Because any service that is activated increases the overall risk, it is important to fully define which roles a server will take on so that those services can be properly configured. Although these components can be set up manually, the process of turning on these services is streamlined through the use of the Configure Your Server Wizard.

Securing a Server Using Server Manager

With the list of roles that a server will perform in hand, the ideal utility for turning on these roles and securing them is the newly renovated Server Manager. By default, if a server is a DNS server but does not do file and print services, Server Manager not only opens the ports required for DNS, but also blocks any file and print access to the server.

Windows Server 2008 R2 Server Manager, shown in Figure 1, allows for individual roles to be enabled on a server. After being enabled, those roles are turned on and the proper ports to run those roles are opened on the server.

Figure 1. Viewing Server Manager.

Other

Server 2008 : Using the Integrated Windows Firewall with Advanced Security

Server 2008 : Deploying Physical Security

Programming .NET Security : Programming Digital Signatures (part 3) - Using the Signature Formatter Classes

Programming .NET Security : Programming Digital Signatures (part 2) - Using the Implementation Class

Programming .NET Security : Programming Digital Signatures (part 1) - Using the Abstract Class

Programming .NET Security : Digital Signatures Explained

Programming .NET Security : Programming Asymmetrical Encryption

Programming .NET Security : Asymmetric Encryption Explained (part 2) - Creating the Encrypted Data

Programming .NET Security : Asymmetric Encryption Explained (part 1) - Creating Asymmetric Keys

Programmatic Security (part 6) - Assembly-Wide Permissions

Top 10

- Review : Sigma 24mm f/1.4 DG HSM Art

- Review : Canon EF11-24mm f/4L USM

- Review : Creative Sound Blaster Roar 2

- Review : Philips Fidelio M2L

- Review : Alienware 17 - Dell's Alienware laptops

- Review Smartwatch : Wellograph

- Review : Xiaomi Redmi 2

- Extending LINQ to Objects : Writing a Single Element Operator (part 2) - Building the RandomElement Operator

- Extending LINQ to Objects : Writing a Single Element Operator (part 1) - Building Our Own Last Operator

- 3 Tips for Maintaining Your Cell Phone Battery (part 2) - Discharge Smart, Use Smart

REVIEW

- First look: Apple Watch

- 3 Tips for Maintaining Your Cell Phone Battery (part 1)

- 3 Tips for Maintaining Your Cell Phone Battery (part 2)

VIDEO TUTORIAL

- How to create your first Swimlane Diagram or Cross-Functional Flowchart Diagram by using Microsoft Visio 2010 (Part 1)

- How to create your first Swimlane Diagram or Cross-Functional Flowchart Diagram by using Microsoft Visio 2010 (Part 2)

- How to create your first Swimlane Diagram or Cross-Functional Flowchart Diagram by using Microsoft Visio 2010 (Part 3)

Popular Tags

Microsoft Access Microsoft Excel Microsoft OneNote Microsoft PowerPoint Microsoft Project Microsoft Visio Microsoft Word Active Directory Biztalk Exchange Server Microsoft LynC Server Microsoft Dynamic Sharepoint Sql Server Windows Server 2008 Windows Server 2012 Windows 7 Windows 8 Adobe Indesign Adobe Flash Professional Dreamweaver Adobe Illustrator Adobe After Effects Adobe Photoshop Adobe Fireworks Adobe Flash Catalyst Corel Painter X CorelDRAW X5 CorelDraw 10 QuarkXPress 8 windows Phone 7 windows Phone 8

site
stats