In the last few years, security has become a hot-button issue for IT organizations of all sizes. Accordingly, many of the security features that were either optional or suspect in Windows 2000 have become solid, effective fixtures in Windows Server 2003-making it the most secure operating system Microsoft has ever produced. That is, if you know how to configure it properly.

The Windows Server 2003 Security Cookbook wants to make sure that you do know how. Picking up right where its predecessor, the Windows Server Cookbook, left off, this desktop companion is focused solely on Windows Server security. It teaches you how to perform important security tasks in the Windows Server 2003 OS using specific and adaptable recipes. Each recipe features a brief description of the problem, a step-by-step solution, and then a discussion of the technology at work. Whenever possible, the authors even tell you where to look for further information on a recipe.

The book is written in a highly modular format, with each chapter devoted to one or more technologies that Windows Server 2003 provides. This approach allows you to look up a task or scenario that you want to accomplish, find that page, and read that particular recipe only. Topics include:

• System preparation and administration

• Protecting the computer at the TCP/IP level

• Applying security options to Active Directory

• Improving security on domain controllers

• Securing DHCP controllers

• Encrypting and signing network traffic using IPSec

• Patch management

If you're an intermediate or advanced system administrator who wants to feel secure when deploying Windows Server 2003 and its related services, then you don't want to be without the Windows Server 2003 Security Cookbook.

Amazon.com® Reader Reviews (Ranked by Helpfulness)

Average Amazon.com® Rating:  Based on 5 Ratings

COOKING SECURITY WITH WINDOWS SERVER 2003!! - 2006-10-04
Reviewer Rating:
Do you use Windows Server 2003 and perform security tasks as one of your primary job functions? If you do, then this book is for you! Authors Mike Danseglio and Robbie Allen, have done an outstanding job of writing a book that covers Windows Server 2003 and some amount of Windows XP security.

Danseglio and Allen, begin by setting the stage for the rest of the book by providing an introduction to Windows Server 2003 security concepts. Then, the authors show you how to secure an initial configuration. Next, they describe many techniques to help protect the computer at the TCP/IP protocol level. Then, the authors discuss how to protect local and network files with strong encryption. Next, they show you how to apply numerous options to your Active Directory forest. The authors continue by describing the use of Group Policy to configure and increase the security of both client and server computers. Then, the authors show you how to use security templates to save and deploy settings. Next, they focus on the tasks necessary to improve security on domain controllers. The authors then show you the vulnerabilities and security recipes you can use to defend against user account attacks such as password guessing or spoofing. Then, they describe how you can restrict rights and permissions to ensure that only desired users can perform specific needs. The authors continue by focusing on securing the grotesquely insecure DHCP component of Windows. Then, they describe how you can prevent several common DNS-based attacks. Next, the authors show you how to secure a file and print server, which is one of the most common uses of Windows Server 2003. The authors then discuss numerous methods that you can use to encrypt and sign network traffic using IPec. Then, they continue by covering the locking down of the much-maligned IIS. Next, the authors explore the remote access technologies of RRAS and IAS in depth, with a particular focus on improving their security. Then, they describe how you can help secure these remote access technologies, which are favorite attack vectors for evildoers. The authors then go into great detail describing how to plan, deploy, and use both PKI and certificates. They continue by showing you how to audit different types of events. Next, show you how to configure and manage event logs. Finally, they focus on and help simplify one of the most over-hyped security issues: patch management.

This most excellent book should not be considered the ultimate reference to Windows security--that's not the intention of the authors. More importantly, their intention is to provide efficient and innovative ways to complete tasks and resolve problems.

Good introduction in windows security - 2008-07-26
Reviewer Rating:
When i bought, I have in charge a little network (150 PCs) and I dont have a lot experience about Windows 2003 Security. This help me to give me directions about how resolve several issues, but its not a book to get foundations.

Recipes and formulas sorted by task domain or system service for quick and easy access - 2006-08-04
Reviewer Rating:
Mike Danseglio & Robbie Allen's Windows Server 2003 Security Cookbook is for the IT pro and systems administrator concerned with Windows security. Windows 2003 is much more secure than prior versions but you have to know how to set it up properly - and that's where Windows Server 2003 Security Cookbook comes in, offering recipes and formulas sorted by task domain or system service for quick and easy access. Many topics here are more advanced coverages not seen in competing titles, such as auditing and event log usage.

Strictly for the experienced system admin - 2008-05-17
Reviewer Rating:
I run an e-commerce server with a very large Java application that I have developed, however, my knowledge of Windows Server is rather perfunctory, and I really don't want or feel I need extensive knowledge of the O/S. After a trojan trashed my server, I wanted to make sure that I had a better understanding of "best practices" and vulnerabilities, for example "back doors" in the O/S, so I could "lock it down." This book did not provide such an overview, and is written for the Windows system professional. It has this "You want to..." approach, like, "You want to encrypt the framzit block using the whoozit snap-in tool."
I was looking for a cook-book approach: e.g. you are running a web-server, here is how it gets hacked, so do A, B and C to secure the server. I don't think the book dedicated more than one page on using the Windows firewall tool. I guess the authors expected that you already know the basic tools.
In summary, lots of esoteric stuff that may or may not apply to your situation, explained in a way that only someone experienced with the O/S can use without digging much deeper than you may wish.

Great Windows 2003 Security Admin Book - 2007-02-23
Reviewer Rating:
'Windows Server 2003 Security Cookbook' by Mike Danseglio is a great resource for any and all Windows 2003 IT administrators. Written in traditional O'Reilly uber fashion, this is a great desk reference that is easy to recommend.

Nuff Said!!

**** RECOMMENDED

Browse Similar Topics

Top Level Categories:
Operating Systems
Security

Sub-Categories:
Operating Systems > Windows Server 2003
Windows Server 2003 > Security
Security > Operating Systems
Operating Systems > Windows Server 2003