win 2003 OS question - Techist - Tech Forum

Go Back   Techist - Tech Forum > Computer Software > Microsoft Windows and Software
Click Here to Login
Closed Thread
 
Thread Tools Display Modes
 
Old 08-13-2006, 03:09 PM   #1 (permalink)
Banned
 
Join Date: Jul 2003
Posts: 878
Default win 2003 OS question

Hi, I have to redesign the file sharing structure on all the hard drives for the a file server that has FAT partitions and Microsoft Windows default permissions/security settings. I need to know the following please:what should I do when it comes to Uninstalling Unnecessary Programs,Stop Unnecessary Services running in IIS,User Accounts, what kind of file sharing program should I use so I can take extra caution in opening up whatever you download. What do I need to do please? This is a win 2003 machine. Any help is greatly appreciated.
__________________

24giovanni is offline  
Old 08-13-2006, 06:54 PM   #2 (permalink)
Law
Wizard Techie
 
Law's Avatar
 
Join Date: Aug 2005
Location: the data closet
Posts: 4,200
Default

Running FAT32 partition on Win2003? Well I would convert it to NTFS for sure, that way you have more control over your folders and files.

We don't install unnecessary software on a server machine in the first place, so when you do and you need to uninstall it, which usually means having to bring the server down for a restart. Time=Money, every minute your server is down it cost the company money, plus do you know how long it can take for Win2003 server to start up into the desktop again? Could be up to 20 minutes, I've seen it take that long, so the point is, don't install unnecessary software in the first place, or wait to remove it after no one is using it. Installing unnecessary software and services creates more complication and adds more to the security problem. Keep the server simple.

Users account should be limited, only permit what they need and deny the rest. It’s a simple concept I follow all the time.

Windows file sharing and NetBIOS is ok in a small network, you have NTFS security and Active Directory. Try FTP?

Taken extra precaution when opening files on Win2003? I don’t know what you are using it for but you have the wrong idea about Win2003 server, it’s not a workstation. You don’t use it to browse the Internet; actually you don’t even use it like Windows XP. You configured what you need and you leave it alone with a password protected screen saver.

Look http://www.microsoft.com/technet/sec...hg/sgch00.mspx

That's enough to keep you busy for awhile.
__________________

Law is offline  
Old 08-13-2006, 07:04 PM   #3 (permalink)
Banned
 
Join Date: Jul 2003
Posts: 878
Default

Law, Do you know if there are any serice packs, hot fixes and patches for 2003 server that I need to install? Again, I really appreciate your help and wisdom.
24giovanni is offline  
Old 08-13-2006, 07:16 PM   #4 (permalink)
Law
Wizard Techie
 
Law's Avatar
 
Join Date: Aug 2005
Location: the data closet
Posts: 4,200
Default

Currently it's Service Pack 1, but there is SP2 which I believe is still in beta but I haven't check as of now. I would advice to stay away from beta service pack, especially on a server OS until the final release is out. Just visit M$ update site and get all the updates.

In a big business environment, they don't apply the patches as soon as it's release, probably due to the reason that the patches could be just as worse as the vulnerability it was meant to fix, or it might just crash the system (like in the HP and M$ case back in April). Before they apply the patch they usually test it out in a test environment before rolling it out into their production machines. It’s good to test the patch to see if it’s stable and to apply it as soon as possible before the attacker finds out.

But in your case, you’re probably just using it for home and learning off it? Than you shouldn’t have to worry since it’s not feasible for you to add more cost by creating a test environment.
__________________

Law is offline  
Old 08-13-2006, 07:21 PM   #5 (permalink)
Banned
 
Join Date: Jul 2003
Posts: 878
Default

Would you leave all IIS settings as defaults? Again, Thanks so much.
24giovanni is offline  
Old 08-13-2006, 07:40 PM   #6 (permalink)
Law
Wizard Techie
 
Law's Avatar
 
Join Date: Aug 2005
Location: the data closet
Posts: 4,200
Default

No way, if you are configuring a web server/email server/FTP server you can not leave it at default setting. Default setting was made for ease of deployment and it's unsecured.
Law is offline  
Old 08-13-2006, 07:46 PM   #7 (permalink)
Law
Wizard Techie
 
Law's Avatar
 
Join Date: Aug 2005
Location: the data closet
Posts: 4,200
Default

Read this and you'll get a sense of what I am talking about http://www.windowsecurity.com/articl...ers_Part1.html

A great checklist before bringing the IIS server online
http://www.washington.edu/computing/...checklist.html
Law is offline  
Old 08-13-2006, 07:52 PM   #8 (permalink)
Banned
 
Join Date: Jul 2003
Posts: 878
Default

will do. Do you mind if I ask what you, personally, set your IIS settings to? Thanks again. You are a great help.
24giovanni is offline  
Old 08-13-2006, 07:54 PM   #9 (permalink)
Law
Wizard Techie
 
Law's Avatar
 
Join Date: Aug 2005
Location: the data closet
Posts: 4,200
Default

I don't have access to it and I can't reveal it, policy reason. Sorry
Law is offline  
Old 08-13-2006, 07:57 PM   #10 (permalink)
Banned
 
Join Date: Jul 2003
Posts: 878
Default

Understandable...thanks anwway. I appreciate it.
__________________

24giovanni is offline  
Closed Thread

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off




Copyright 2002- Social Knowledge, LLC All Rights Reserved.

All times are GMT -5. The time now is 03:50 AM.


Powered by vBulletin® Version 3.8.8 Beta 1
Copyright ©2000 - 2017, vBulletin Solutions, Inc.