« Back to DataSecurityPolicies.com

Archive for the 'Windows Hardening Standard' Category



Vista Hardening Guide

If you’re planning on deploying Windows Vista, make sure you follow the Windows Vista Security Guide available from Microsoft Technet here.

This is a description of the hardening guide:

This guide focuses on how to help create and maintain a secure environment for desktop and laptop computers that run Windows Vista. The guide explains the different stages of how to secure two different environments, and what each security setting addresses for the desktop and laptop computers deployed in either one. The guide provides prescriptive information and security recommendations.

Here are the chapters:

Chapter 1: Implementing the Security Baseline
Chapter 2: Defend Against Malware
Chapter 3: Protect Sensitive Data
Chapter 4: Application Compatibility
Chapter 5: Specialized Security – Limited Functionality
Appendix A: Security Group Policy Settings

Don’t install Vista without it!

December 15th, 2007 | Posted in Windows Hardening Standard | No Comments

Windows Hardening Guide

First.org has several good examples of Windows hardening guides in their Best Practices Guide Library.

Jay Ward wrote the very comprehensive Windows 2003 / IIS 6.0 DMZ Hardening Guidelines. The hardening guide is has 27 steps and is more than 100 pages long.

Some of the steps include:

  • Boot up Windows Server 2003 Standard Edition (Build 3790) CD-ROM to begin installation and configuration.
  • Create a partition for the Operating System.
  • Network Settings
  • Install the latest Patch Releases
  • Installing SSH Server for Remote Management
  • Media Configuration and Permissions
  • Installing the Anti-Virus Engine
  • Disabling Protocols and Setting a Fixed IP for the Server.

This hardening guide would be a great resource for anyone developing their data security standards for Windows servers.

Check it out!

October 8th, 2007 | Posted in Security Standards, Windows Hardening Standard | No Comments