【正文】 Security Resource Kit Assessing Network Security June 23, 2022 EAP architecture TLS GSS_API Kerberos PEAP IKE MD5 EAP PPP Anything… method layer EAP layer media layer MSCHAPv2 TLS SecurID Partner Solutions Offerings VALUE Proposition: Get more business value from your investment in Office Finance ? SarbanesOxley ? Business Scorecard ? Excel Addin for SQL Server Analysis Services Operations ? Six Sigma HR ? Recruiting Sales ? Proposals Solution Accelerators Microsoft Products Office Solution Accelerators VALUE Proposition: Get more business value from your investment in Office Your People EPM Involves…. Your Business Processes Your Organization Your Software Technology amp。 advice, that was incorporated in this guidance” Timothy Grance Manager Systems and Network Security Group Comments Securely make available to outside employees Exchange publishing You Need To… Securely make internal applications available on the Inter Web and Server Publishing Enable partners to access relevant information on my work Integrated S2S VPN and FW Secure and flexible remote access, while protecting my corporate work Integrated RRAS VPN and FW Securely connect my branch offices to the corporate office Integrated FW, VPN, Cache Control Inter Access and protect my clients from malicious Inter traffic FW, Web Proxy Ensure fast access to the most frequently used web content Caching ISA Delivers Relational Reporting Multiple fact tables Full richness the dimensions’ attributes Transaction level access Star, snowflake, 3NF… Complex relationships: Multigrains, manytomany, role playing, indirect… Recursive self joins Slowly changing dimensions The Unified Dimensional Model – The Best Of Relational And OLAP OLAP Cubes Multidimensional navigation Hierarchical presentation Friendly entity names Powerful MDX calculations Central KPI framework “Actions” Language translations Multiple perspectives Partitions Aggregations Distributed sources Visual Studio Team System Change Management Work Item Tracking Reporting Project Site Visual Studio Team Foundation Integration Services Project Management Process and Architecture Guidance Visual Studio Industry Partners Dynamic Code Analyzer Visual Studio Team Architect Static Code Analyzer Code Profiler Unit Testing Code Coverage Visio and UML Modeling Team Foundation Client VS Pro Class Modeling Load Testing Manual Testing Test Case Management Application Modeling Logical Infra. Modeling Deployment Modeling Visual Studio Team Developer Visual Studio Team Test pplication odelingSQL Server Catalog Report Server XML Web Service Interface Report Processing Delivery Delivery Targets (Email, SharePoint, Custom) Rendering Output Formats (HTML, Excel, PDF, Custom) Data Processing Data Sources (SQL, OLE DB, XML/A, ODBC, Oracle, Custom) Security Security Services (NT, Passport, Custom) Office Custom Application Browser SQL Server 2022 Reporting Services Architecture CM Profile ? Runs customizable post connect script ? Script runs RQC notifier with “results string” Listener ? RQS receives Notifier “results string” ? Compares results to possible results ? Removes timeout if response received but client out of date ? Removes quarantine filter if client up to date Quarantine VSAs ? Timer limits time window to receive notify before auto disconnect ? Qfilter sets temporary route filter to quarantine access Inter RAS Client RRAS Server IAS Server Quarantine and are in the Windows Server 2022 Resource Kit Quarantine Architecture Microsoft BI Product Suite Analysis Services OLAP amp。 device independent. Integration into a broad range of different applications and devices. 第二篇 表格篇 Example Goals Project Goal In the vulnerability scanning project, all puters running Windows 2022 Server and Windows Server 2022 on the subs vulnerabilities be remediated as stated. Vulnerability Remediation RPC over DCOM vulnerability (MS 03026) Install Microsoft security patches 03026 and 0339. Anonymous SAM enumeration Configure RestrictAnonymous to: ? 2 on Windows 2022 Server ? 1 on Windows Server 2022 Guest account enabled Disable Guest account. Greater than 10 accounts in the local Administrator group Minimize the number of accounts on the administrators group. Example Scope Statement Components Example Target All servers running: * Windows 2022 Server * Windows Server 2022 Target area All servers on the subs: * * Timeline Scanning will take place from June 3rd to June 10th during noncritical business hours Vulnerabilities to scan for * RPC over DCOM vulnerability (MS 03026) * Anonymous SAM enumeration * Guest account enabled * Greater than 10 accounts in the local Administrator group What to plan for… Project Phase Planning Elements Preassessment Scope Goals Timelines Ground rules Assessment Choosing technologies Perform assessment Organize results Preparing results Estimate risk presented by discovered weaknesses Create a plan for remediation Identify vulnerabilities that have not been remediated Determine improvement in work security over time Reporting your findings Create final report Present your findings Arrange for next assessment Patch Management Solution For Small And Mediumsized Organizations Size of anization Scenario Patch management solution Small Has one to three Windows 2022 or later servers and one IT administrator MBSA and SUS Medium or large Wants a patch management so