Computing at Cornell: Security Banner

Resources for Securing Windows

This page presents links to some useful sites that address Windows security.

From Microsoft:
Microsoft Baseline Security Analyzer, http://www.microsoft.com/technet/security/tools/Tools/mbsahome.asp
Microsoft developed this tool to meet "customer need for a streamlined method of identifying common security misconfigurations" on Windows 2000, Windows XP, or Windows 2003 Server.

Microsoft Windows Update, http://windowsupdate.microsoft.com
This page describes automated system updating with current patches for installed Microsoft products. Advanced system owners and administrators might consider searching the site for specific patches.

Microsoft Technet Security, http://www.microsoft.com/technet/security/
There are numerous security-related articles and resources such as essential patches, fixes and Service Packs at the Microsoft site. Technet is a good place to start searching for specfic technical information.

From The SANS Institute:
Articles on Windows issues, http://www.sans.org/infosecFAQ/win/win_list.htm
"Most of the articles posted here have been written by GIAC-certified professionals to fulfill part of their certification requirements and are provided by SANS as a resource to benefit the security community at large."

From the CERT Coordination Center:
Home Network Security, http://www.cert.org/tech_tips/home_networks.html
This article addresses issues with home computer security but is relevant to CU network users whose systems directly connected to the Internet. Quoting CERT, "This document gives home users an overview of the security risks and countermeasures associated with Internet connectivity, especially in the context of always-on or broadband access services (such as cable modems and DSL). However, much of the content is also relevant to traditional dial-up users (users who connect to the Internet using a modem)."

Windows 95/98 Computer Security, http://www.cert.org/tech_tips/win-95-info.html
"Because of an increasing number of incident reports from Windows 95/98 users the CERT Coordination Center (CERT\CC) and AusCERT have created this document to help these users become more aware of computer security."

Windows NT Configuration Guidelines, http://www.cert.org/tech_tips/win_configuration_guidelines.html
"This document ... details common Microsoft Windows NT 4.0 configuration problems that have been exploited by intruders and recommends practices for deterring several types of break-ins. We encourage system administrators to review all sections of this document and modify their systems accordingly to fix potential weaknesses."

From SecurityFocus (Securing NT):
Securing NT, http://www.securityfocus.com/infocus/1347
This article gives detailed, step-by-step instructions for making a Windows NT 4.0 system as secure as possible.


Last modified: June 04, 2007
Contact Person: feedback@www.cit.cornell.edu

Computing at Cornell Homepage CUinfo CIT Contact List Send Us Feedback