Securing Windows Server 2003

Are you savvy about security in the Windows Server 2003 operating system? If not, this book is for you! Author Mike Danseglio, has done an outstanding job of writing a great book that shows you how to put security to work on behalf of your organization and your users. Danseglio begins by setting the stage for the rest of the book by providing an introduction to Windows Server 2003. Next, the author covers basic computer security concepts, including cryptography and fundamental practices for security administrators. Then, he covers various aspects of physical security, which is essential for any data security to succeed. The author continues by dealing with securing files with Encrypting File System and other file oriented technologies. In addition, the author next focuses on using Group Policy as a security tool and utilizing Security Templates. He also discusses ways you can protect against running bad applications. Next, the author covers the various authentication protocols supported by Windows Server 2003, including Kerberos. Then, he examines IP Security and its proper deployment to secure network communication. The author continues by conducting an exhaustive examination of PKI and certificate-based cryptography. In addition, the author covers smart card technologies and their proper deployment. He also focuses on the grotesque lack of security in DHCP and DNS technologies and how you can try to shore them up. Next, the author covers Internet Information Services security, or the lack thereof. Then, he examines Active Directory design and operation from a security standpoint, including proper planning and deployment; as well as, securing data between domain controllers. The author continues by covering the security features of Remote Access, including dial-up and VPN connectivity. Finally, he covers additional topics such as administrative security, patch management, and auditing. With the preceding in mind, the author has also done an excellent job of writing a book that covers Windows Server 2003 and some amount of Windows XP security. But, in order to understand Windows based security, the author has also made sure that non-Windows security topics like physical security, security policy and risk management were covered.

I agree with what all the other reviewers said about this book! It is an excellent resource for security enthusiasts and experts alike! I have the MSPress book for Exam 70-299, Implementing and Administering Security in a Windows Server 2003 Network. And yet, Mike's treatment of IPSEC, cryptography and other 'serious' stuff makes more sense to me now than when i read the MS Press book. Mike also throws in generous portions of the book devoted to step by step 'how tos' to actually implement certain security scenarios. Mike! When is your next book coming out??

What I don't understand is -- why Microsoft Press didn't publish this book? Mike Danseglio works within Microsoft, so it stands to reason that the information is about as close to the source as humanly possible. Mike shines in this new text, describing pretty much every security function built in to Windows Server 2003. It's pretty tough to find it all under one roof, but Mike manages to pull it off. In short, if you're looking for a great reference to help you get a grip on what you can actually DO with Windows, be sure to pick up Mike's book.

In "Securing Windows Server 2003" the author does a superb job of providing a blueprint on how to secure a Windows 2003 system that is accessible by the world. Similar to a checklist, you will find yourself going through this book using it as a guideline as you rollout your Server 2003 installations and double-checking existing ones already live. The author does a great job of focusing on the task at hand, security, and does not try to do what so many others have -- make this an entire book about implementing 2003. By keeping to the point, the book itself becomes a desk reference instead of another bookshelf weight. Many of the tasks focused on in the book can be bookmarked and refered to for case scenarios during any 2003 implementation. From understanding the basic security of a Server 2003 system, implementing Group Policy Objects, all the way up to understanding Kerbos and PKI cryptography, this book covers each topic in enough detail to give the reader a firm ground on which to check and implement procedures. One of the strong features of the book is the author actually walks you through many of the steps you need to take -- with screenshots where appropriate. He does not leave you stranded in the middle of a procedure with only a vague mention of what task to perform next. Experienced administrators will appreciate the fact that he goes into detail to cover all the bases while newer administrators will appreciate the hands-on approach and step-by-step instructions. Overall, a great security book that should become a standard on any System Administrators bookshelf. Server 2003 has introduced a new era into the Microsoft Server family, one which not all the old tricks and practices of Windows 2000 apply -- this book will help you learn the new ropes and get up to speed quickly.

When I bought this book, I didn't expect much. Another treatment of Windows security. A boring rehash of the same old stuff with a few new tidbits that I could use. I was wrong. This book is excellent! It shows you exactly how to do things the right way. There's no ambiguous lectures or hints here. It says "Do this and you're safe; do that and you're vulnerable." I love that kind of directness. The book also breaks things down so a beginner can learn while they do. I didn't find these sections too valuable myself, but they were easily skipped and are there for the people still ramping up. And it covered pretty much all the security topics I was looking for, including DHCP and PKI. While a couple of important topics were a little light such as IIS, I've already got books specifically on those that I can use. If you have to deal with Windows 2003 security and you want a direct, no-nonsense approach, buy this book. I wouldn't want it to be the only book on my shelf, but I find it valuable to have it there.