tailieunhanh - The 60 Minute Network Security Guide (First Steps Towards a Secure Network Environment)

The Internet consists of loosely interconnected networks of computers located around the world. Computers communicate with each other by exchanging packets according to various protocols. Computers wishing to participate on the Internet need to follow the protocols used by other members of the Internet. The lowest level common protocol used on the Internet is named “Internet Protocol”, often refered to as IP [82]. The addressing mechanism used by IP is similar to phone numbers. All entities that communicate on the Internet must have an IP address | UNCLASSIFIED I33-011R-2006 The 60 Minute Network Security Guide First Steps Towards a Secure Network Environment Systems and Network Attack Center SNAC Updated May 15 2006 Version National Security Agency 9800 Savage Rd. Suite 6704 Ft. Meade MD 20755-6704 Some parts of this document were drawn from Microsoft and The SANS Institute copyright materials with their permission. UNCLASSIFIED UNCLASSIFIED Change Control Version Date Details 18 February 2002 Updated UNIX Section which starts on page 35. These updates where to fixes grammar and syntax 12 July 2002 Clarify reference of shareware product Tripwire ASR page 40 29 March 2006 Nearly all sections of the document were updated to reflect new releases and to remove references to deprecated versions. 15 May 2006 Format grammatical changes. 2 UNCLASSIFIED UNCLASSIFIED Table of Contents GENERAL Security operating Systems and Applications Versions and Know your TCP UDP Servers and Services on the Do not run code From Non-Trusted read E-mail as Plain other malicious code Follow The Concept Of least Application Network Simple Network Management Protocol SNMP .11 Network Security Testing. 11 PERIMETER ROUTERS AND host tcp ip logging and general WINDOWS 2000 AND ABOVE OPERATING Service Packs And Security Active directory and group Windows Configuration Additional Windows 2000 Security data Execution Prevention dep .31 MICROSOFT WEB internet information Server IIS .33 UNIX SYSTEMS AND Startup and login Services and System Network Network user Cron and At Core 3