Help - Search - Members - Calendar
Full Version: Security updates
MSFN Forums > Member Contributed Projects > HFSLIP

   
Google Internet Forums Unattended CD/DVD Guide
tain
Oct 30 2005, 10:32 PM
QUOTE
NSA has developed security configuration guidance for Windows 2000, with the cooperation of other government agencies and industry partners who provided their expertise and extensive technical review.
http://www.nsa.gov/snac/downloads_win2000....uID=scg10.3.1.1

They have .INFs and all kinds of good info. Any chance of incorpating some/all of this with HFSLIP or FDV's fileset?

Is a poll appropriate for nominating new "features" like this? We'll see how it goes smile.gif
fdv
Oct 31 2005, 01:02 AM
fyi, i did base some of my security setting info from templates that i downloaded from the NIST's Computer Security Resource Center. i am downloading the NSA inf files now and i'll have a look. right now i seem to be stalled at 758kb of 15,758kb wacko.gif
if someone else wants to start writing instructions on how to implement security templates from CSRC and NSA, i will put it on my site...
so, i'll hold off on my own vote til i actually see these files biggrin.gif
saugatak
Oct 31 2005, 01:26 AM
FDV I thought you did incorporate some of those mods.

Few concerns I have:

1. Will any of those mods screw up popular programs?
2. Will any of those mods be affected by subsequent security downloads?

FDV I thought you did incorporate some of those mods.

Few concerns I have:

1. Will any of those mods screw up popular programs?
2. Will any of those mods be affected by subsequent security downloads?
Oleg_II
Oct 31 2005, 03:22 AM
Sorry if it is not related but I'd like to ask about these Security Templates in i386: are they ALL needed? I'm completely new to it but some of them seems to be foe workstation and some for server wacko.gif

Or do they needed on IE-free system at all?
fdv
Nov 10 2005, 10:46 AM
i finally got some time to comb through these. they are best practice whitepapers. (in other words, they are simply a bunch of PDFs that the NSA has released about good security practices). it's a dry read and they talk about things that most people here would kind of say "huh? why would you do it that way?" for example, the papers talk about securing IIS. if you're using my fileset, you don't install IIS. the papers don't really get into disabling Internet Explorer, even... yet another group of people that don't seem to realize that to make Windows more secure, you really have to rip stuff out of it. so, i can't really recommend bothering with the NSA papers, because even if you are setting up (for example) Active Directory, you'll probably find more useful information in an O'Reilly's book.
Google Internet Forums Unattended CD/DVD Guide
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.