Microsoft Publishes Security Operations Guide

Microsoft Corp. produced a Security Operations Guide for Windows 2000 Server this month as part of its concentrated push to elevate the priority of security in its products.

The guide, which can be found here, includes guidelines, cheat sheets and scripts.

Chapters deal with topics including platform security overviews, using Group Policy Objects to manage security, securing servers based on role, patch management, intrusion detection and incident response.

The kit includes "Job Aids" for assessing threats and vulnerabilities, a checklist of top security blunders, a chart of common attacks and countermeasures and an incident response quick reference card.

The guide ranges from the very broad down to the very specific. "This guide will help you identify the risks inherent in a networked environment, help you to work out the level of security appropriate for your environment, and show you the steps necessary to achieve that level of security. Although targeted at the enterprise customer, much of this guide is appropriate for organizations of any size," Microsoft's guide reads.

The guide focuses on operations for creating and maintaining a secure environment on servers running Windows 2000. Microsoft gets into specific detail in the text and appendices about specific services that should be disabled and what operators to use with the Microsoft Network Security Hotfix tool (Hfnetchk). However, Microsoft warns that the scope of the guide cannot show users how to run specific applications in a secure fashion.

Microsoft positions the guide as part of its Strategic Technology Protection Program (STPP), an initiative launched in October 2001. Microsoft recently reaffirmed that security is on its mind in January when chairman and chief software architect Bill Gates issued his Trustworthy Computing e-mail.

The guide can be read in a browser or downloaded as an 800 KB executable file that extracts into the Adobe Acrobat format.

About the Author

Scott Bekker is editor in chief of Redmond Channel Partner magazine.


  • AI, IoT and Machine Learning To Challenge Traditional Networking

    The next phase of networking will depend on IT learning to wrangle modern technologies in ways that simplify operations and help humans make decisions, according to a new report by Cisco.

  • Coming in 2020: .NET 5, The Next Phase of Microsoft's .NET Framework

    .NET 5 (no "Core" and no "Framework") will mark the transition from the aging, proprietary, Windows-only .NET Framework to a modern, open source, cross-platform .NET.

  • What Computing Will Look Like in 2030: Top 5 Tech Predictions for the Next Decade

    For better or worse, the next 10 years will bring more intelligent devices to more areas of our daily lives. From the proliferation of AI to what that means for user privacy, here are Brien's tech predictions for 2020 and beyond.

  • Azure Arc: A Deeper Look at Microsoft's Multicloud Play

    Arguably one of Microsoft's biggest announcements this year was the introduction of Azure Arc at Ignite. But is this really a game-changer or is Microsoft just falling for the multicloud buzz?

comments powered by Disqus

Office 365 Watch

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.