Susan
Fri Aug 29 14:30:22 CDT 2003
Ports open = threats = risk
Keep your ports closed.
Only open those that you need.
Up to date A/V
Strip off nasty attachments
Don't host a web site on your SBS box.
1433/1434 should be closed anyway because we aren't legally allowed to
backend a publically accessable web site.
This one is tough .... try to get your workstations in "user mode" try
as hard as you can to NOT run local admin.
Quite honestly, show me a small business/a SBS box and then show me a
large firm with a IT department and I'll show you that we are in the
same boat and no more/no less secure than they are. Sometimes we SBSers
...even with our ISA on our Domain Controllers and all that are more
secure than large firms with VPN and remote connections all over the
place.
It's not the box, it's how it's set up and who's driving the box IMHO.
Steve wrote:
> Hi -
>
> I love SBS 2000, but running applications on a domain
> controller is a BIG security concern for me. In fact,
> Microsoft does NOT recommend running SQL 2000 on a domain
> controller (see link below).
>
> What can I do to secure Exchange 2000 and SQL 2000 on SBS
> 2000 beyond keeping the patches current?
>
> Thanks -
>
> Steve
>
>
http://www.microsoft.com/technet/treeview/default.asp?
> url=/technet/prodtechnol/sql/maintain/security/sp3sec/SP3S
> EC04.ASP
--
"Don't lose sight of security. Security is a state of being,
not a state of budget. He with the most firewalls still does
not win. Put down that honeypot and keep up to date on your
patches. Demand better security from vendors and hold them
responsible. Use what you have, and make sure you know how
to use it properly and effectively."
~Rain Forest Puppy
http://www.wiretrip.net/rfp/txt/evolution.txt