【正文】 and PC hardware SSL bridging unloads downstream servers Web cache Updated policy rules Serve content locally Prefetch content during low activity periods Inter access control User and groupbased Web usage policy Extensible by third parties Comprehensive authentication New support for RADIUS and RSA SecurID User amp。第一篇 區(qū)塊篇 At Risk The Soft Underbelly Security Issues Today 1 Source: Forrester Research 2 Source: Information Week, 26 November 2022 3 Source: Netcraft summary 4 Source: CERT, 2022 5 Source: CSI/FBI Computer Crime and Security Survey 6 Source: Computer Security Institute (CSI) Computer Crime and Security Survey 2022 7 Source: CERT, 2022 8 Source: Gartner Group 14B devices on the Inter by 20221 35M remote users by 20222 65% increase in dynamic Web sites3 From 2022 to 2022 reported incidents rose from 21, 756 to 82,0944 Nearly 80 percent of 445 respondents surveyed said the Inter has bee a frequent point of attack, up from 57 percent just four years ago5 90% detected security breaches6 85% detected puter viruses6 95% of all breaches avoidable with an alternative configuration7 Approximately 70 percent of all Web attacks occur at the application layer8 Application Layer Attacks Identity Theft Web Site Defacement Unauthorized Access Modification of Data, Logs and Records Theft of Proprietary Information Service Disruption Implications Compliance: Sarbanes Oxley Gramm Leach Blilely US Patriot Act HIPAA The Privacy Act (CA) Basel 2 (EU) Data Protection Act (EU) Litigation File Sharing Piracy HR Issues Shareholder Suits Customer Impact Types Of SRP Rules Path Rule ? Compares path of file being run to an allowed path list ? Use when you have a folder with many files for the same application ? Essential in when SRPs are strict Hash Rule ? Compares the MD5 or SHA1 hash of a file to the one attempted to be run ? Use when you want to allow/prohibit a certain version of a file from being run Certificate Rule ? Checks for digital signature on application (. Authenticode) ? Use when you want to restrict both win32 applications and ActiveX content Inter Zone Rule ? Controls how Inter Zones can be accessed ? Use when in high security environments to control access to web applications SQL Server 2022 Themes Supportability amp。 groupbased access policy Third party extensibility System Service Accounts Local Service and Network Service ? No password to manage ? Runs with only slightly more permissions than Authenticated User ? Local Service cannot authenticate across the work, Network Service authenticates as the puter account Local System ? No password to manage ? Bypasses security checks User Accounts ? Run with less privilege than Local System ? Stores password as an LSA secret ? Can be plex to configure What’s New With IPSec? Management ? IP Security Monitor ? Commandline management with Netsh ? Logical addresses for local IP configuration Security ? Stronger cryptographic master key (DiffieHellman) ? Computer startup security ? Persistent policy for enhanced security ? Ability to exclude the name of the CA from certificate requests ? Better default exemption handling Interoperability ? IPSec functionality over work address translation (NAT) ? Improved IPSec integration with Network Load Balancing ISA Server 2022 New Features New management tools and user interface Multiwork architecture Unlimited work definitions and types Firewall policy applied to all traffic Per work routing relationships Network templates and wizards Wizard automates nwk routing relationships Supports 5 mon work topologies Easily customized for sophisticated scenarios Visual policy editor Unified firewall/VPN policy w/one rulebase Drag/drop editing w/scenariodriven wizards XMLbased configuration importexport Enhanced troubleshooting All new monitoring dashboard Realtime log viewer Content sensitive task panes Ease of Use Efficiently deploy, manage, and enable new usage scenarios How To Use Windows Update To configure Automatic Updates: Select Keep my puter up to date Open the System application in Control Panel 1 On the Automatic Updates tab, select the option you want 3 2 Office Update Benefits Limitation Single location for office patches and updates Easy to use Can be configured to update consumer or enterprise systems Does not support Automatic Updates。 Windows174。 device independent. Integration into a broad range of different applications and devices. 第二篇 表格篇 Example Goals Project Goal In the vulnerability scanning project, all puters running Windows 2022 Server and Windows Server 2022 on the subs vulnerabilities be remediated as stated. Vulnerability Remediation RPC over DCOM vulnerability (MS 03026) Install Microsoft security patches 03026 and 0339. Anonymous SAM enumeration Configure RestrictAnonymous to: ? 2 on Windows 2022 Server ? 1 on Windows Server 2022 Guest account enabled Disable Guest account. Greater than 10 accounts in the local Administrator group Minimize the number of accounts on the administrators group. Example Scope Statement Components Example Target All servers running: * Windows 2022 Server * Windows Server 2022 Target area All servers on the subs: * * Timeline Scanning will take place from June 3rd to June 10th during noncritical business hours Vulnerabilities to scan for * RPC over DCOM vulnerability (MS 03026) * Anonymous SAM enumeration * Guest account enabled * Greater than 10 accounts in the local Administrator group What to plan for… Project Phase Planning