Windows Server 2003 Security Cookbook: Security Solutions and Scripts for System Administrators (Cookbooks (O'Reilly))

List Price: $49.95 Discount Price: $22.74

Customer Reviews:

Recipes and formulas sorted by task domain or system service for quick and easy access [Posted on 2006-08-05]
Mike Danseglio & Robbie Allen's Windows Server 2003 Security Cookbook is for the IT pro and systems administrator concerned with Windows security. Windows 2003 is much more secure than prior versions but you have to know how to set it up properly - and that's where Windows Server 2003 Security Cookbook comes in, offering recipes and formulas sorted by task domain or system service for quick and easy access. Many topics here are more advanced coverages not seen in competing titles, such as auditing and event log usage.

COOKING SECURITY WITH WINDOWS SERVER 2003!! [Posted on 2006-10-04]
Do you use Windows Server 2003 and perform security tasks as one of your primary job functions? If you do, then this book is for you! Authors Mike Danseglio and Robbie Allen, have done an outstanding job of writing a book that covers Windows Server 2003 and some amount of Windows XP security.

Danseglio and Allen, begin by setting the stage for the rest of the book by providing an introduction to Windows Server 2003 security concepts. Then, the authors show you how to secure an initial configuration. Next, they describe many techniques to help protect the computer at the TCP/IP protocol level. Then, the authors discuss how to protect local and network files with strong encryption. Next, they show you how to apply numerous options to your Active Directory forest. The authors continue by describing the use of Group Policy to configure and increase the security of both client and server computers. Then, the authors show you how to use security templates to save and deploy settings. Next, they focus on the tasks necessary to improve security on domain controllers. The authors then show you the vulnerabilities and security recipes you can use to defend against user account attacks such as password guessing or spoofing. Then, they describe how you can restrict rights and permissions to ensure that only desired users can perform specific needs. The authors continue by focusing on securing the grotesquely insecure DHCP component of Windows. Then, they describe how you can prevent several common DNS-based attacks. Next, the authors show you how to secure a file and print server, which is one of the most common uses of Windows Server 2003. The authors then discuss numerous methods that you can use to encrypt and sign network traffic using IPec. Then, they continue by covering the locking down of the much-maligned IIS. Next, the authors explore the remote access technologies of RRAS and IAS in depth, with a particular focus on improving their security. Then, they describe how you can help secure these remote access technologies, which are favorite attack vectors for evildoers. The authors then go into great detail describing how to plan, deploy, and use both PKI and certificates. They continue by showing you how to audit different types of events. Next, show you how to configure and manage event logs. Finally, they focus on and help simplify one of the most over-hyped security issues: patch management.

This most excellent book should not be considered the ultimate reference to Windows security--that's not the intention of the authors. More importantly, their intention is to provide efficient and innovative ways to complete tasks and resolve problems.

Great Windows 2003 Security Admin Book [Posted on 2007-02-24]
'Windows Server 2003 Security Cookbook' by Mike Danseglio is a great resource for any and all Windows 2003 IT administrators. Written in traditional O'Reilly uber fashion, this is a great desk reference that is easy to recommend.

Nuff Said!!

**** RECOMMENDED

Strictly for the experienced system admin [Posted on 2008-05-17]
I run an e-commerce server with a very large Java application that I have developed, however, my knowledge of Windows Server is rather perfunctory, and I really don't want or feel I need extensive knowledge of the O/S. After a trojan trashed my server, I wanted to make sure that I had a better understanding of "best practices" and vulnerabilities, for example "back doors" in the O/S, so I could "lock it down." This book did not provide such an overview, and is written for the Windows system professional. It has this "You want to..." approach, like, "You want to encrypt the framzit block using the whoozit snap-in tool."
I was looking for a cook-book approach: e.g. you are running a web-server, here is how it gets hacked, so do A, B and C to secure the server. I don't think the book dedicated more than one page on using the Windows firewall tool. I guess the authors expected that you already know the basic tools.
In summary, lots of esoteric stuff that may or may not apply to your situation, explained in a way that only someone experienced with the O/S can use without digging much deeper than you may wish.

Good introduction in windows security [Posted on 2008-07-26]
When i bought, I have in charge a little network (150 PCs) and I dont have a lot experience about Windows 2003 Security. This help me to give me directions about how resolve several issues, but its not a book to get foundations.

Click here for more details and discount information...