tailieunhanh - Guide to the Secure ConfiguratGuide Configuration and Administration of Microsoft Exchange

This document describes how to more securely install, configure, and administer the Microsoft Exchange Server and associated clients. The focus of these documents is Exchange Server and , the Exchange Client, and the Outlook 97 and Outlook 98 clients. Please note that discussions regarding Exchange Server assume service pack 1 (or later) has been installed. Exchange 2000 and Outlook 2000 guidance is under development. This document is intended for the reader who is already very familiar with Microsoft Exchange but needs to understand how to install, configure, and administer the product in a more secure manner. The information presented here is written in a direct and concise. | Guide to the Secure Configuration and Administration of Microsoft Exchange The Network Applications Team of the Systems and Network Attack Center SNAC Author Trent Pitsenbarger National Security Agency ATTN C43 Pitsenbarger 9800 Savage Rd. Ft. Meade MD 20755 W2KGuides@nsa. gov Dated 7 Jan 2002 Version Warnings Do not attempt to implement any of the settings in this guide without first testing in a non-operational environment. This document is only a guide containing recommended security settings. It is not meant to replace well-structured policy or sound judgment. Furthermore this guide does not address site-specific configuration issues. Care must be taken when implementing this guide to address local operational and policy concerns. SOFTWARE IS PROVIDED AS IS AND ANY EXPRESS OR IMPLIED WARRANTIES INCLUDING BUT NOT LIMITED TO THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE EXPRESSLY DISCLAIMED. IN NO EVENT SHALL THE CONTRIBUTORS BE LIABLE FOR ANY DIRECT INDIRECT INCIDENTAL SPECIAL EXEMPLARY OR CONSEQUENTIAL DAMAGES INCLUDING BUT NOT LIMITED TO PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES LOSS OF USE DATA OR PROFITS OR BUSINESS INTERRUPTION HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY WHETHER IN CONTRACT STRICT LIABILITY OR TORT INCLUDING NEGLIGENCE OR OTHERWISE ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. Please keep track of the latest security patches and advisories at the Microsoft security bulletin page at http technet security . This document contains possible recommended settings for the system Registry. You can severely impair or disable a Windows NT System with incorrect changes or accidental deletions when using a Registry editor or to change the system configuration. Currently there is no undo command for deletions within the Registry. Registry editor prompts you to confirm the deletions if Confirm on .