Summary:Deploy and administer bullet-proof Windows 2000 security policies. This book explains how to safeguard intranet, Internet, and e-commerce transactions with IPSec, defend against hacking, spoofing, sniffing, and DDS attacks, and secure your network with firewalls, proxy servers, and VPNs.
Your practical guide to securing your Windows 2000 network
Implement rock-solid security on your Windows 2000 enterprise network with the expert information in this comprehensive resource. Windows 2000 Security Handbook shows you, step-by-step, how to locate and plug security holes and backdoors, authenticate users, and defend against the latest methods of attack. You'll get in-depth coverage of the all-new security features in Windows 2000 - from Active Directory, Kerveros 5, and smartcards, to IPSec and PKI. Throughout the book, you'll get advice on how to incorporate sound security practices into your daily administrative tasks. The companion web site includes bonus content on Microsoft Certificate Services, a listing of Windows 2000 Services and their dependencies, and common protocols and ports used by Windows 2000 Services. Plus, you'll get eight pages of blueprints illustrating the four major factors in building a scalable, robust, and secure Windows 2000 network with proper Active Directory and DNS structure, as well as proper Organizational Unit and Group Policy usage.
*Understand the threats to your Windows 2000 enterprise network and the appropriate countermeasures
*Understand Windows 2000-based security mechanisms, and use them to proactively defeat attackers
*Customize administrative control over your Active Directory with Group Policy, Organizational Units, and delegation
*Plan and implement countermeasures, such as system patches, defensive configuration, encryption, and intrusion detection methods
*Provide application-transparent encryption services for IP Traffic with IPSec
*Establish secure Active Directory domain components, including group and user permissions, OUs, and trust relationships
*Enable strong authentication with Kerberos 5 and PKI
*Utilize access control lists and the Encrypting File System to protect access to critical files and objects
*Build secure firewalls and implement strong authentication policies on VPNs
*Handle fault tolerance with disk mirroring, disk striping, replication, and RAID arrays
