Comments on: U.S. military to standardize Windows hardening http://advosys.ca/viewpoints/2007/01/us-military-to-standardize-windows-hardening/ Security, operating systems and the IT industry Wed, 22 Jul 2009 14:20:53 +0000 http://wordpress.org/?v=2.9.2 hourly 1 By: The coming Russian Cyber War « How-Dare-I http://advosys.ca/viewpoints/2007/01/us-military-to-standardize-windows-hardening/comment-page-1/#comment-8419 The coming Russian Cyber War « How-Dare-I Sun, 30 Nov 2008 15:02:12 +0000 http://advosys.ca/viewpoints/2007/01/us-military-to-standardize-windows-hardening/#comment-8419 [...] one level, it is scary, but on another, very interesting to see what happens, how the US and others harden their systems, and in general, how serious it is taken. I find myself thinking that [...] [...] one level, it is scary, but on another, very interesting to see what happens, how the US and others harden their systems, and in general, how serious it is taken. I find myself thinking that [...]

]]> By: Mike http://advosys.ca/viewpoints/2007/01/us-military-to-standardize-windows-hardening/comment-page-1/#comment-7195 Mike Tue, 06 Mar 2007 06:57:25 +0000 http://advosys.ca/viewpoints/2007/01/us-military-to-standardize-windows-hardening/#comment-7195 SANS and CIS are certianly great places to get Windows hardening guidance, as is NSA. But don't forget Microsoft's own security guides for Vista at www.microsoft.com/technet/windowsvista/security/guide.mspx and XP at www.microsoft.com/technet/security/prodtech/windowsxp/secwinxp/default.mspx - both of which are quite useful. Ultimately any security guidance must be customized for your personal balance between security and usability. All of these provide great starting places to either tighten or loosen security based on your specific needs. Webber, you're right on with the ""thou shalt only use NTLMv2 authentication for Windows" just isn’t viable in every environment." comment. While that might work for me, it wouldn't work for many other folks. SANS and CIS are certianly great places to get Windows hardening guidance, as is NSA. But don’t forget Microsoft’s own security guides for Vista at http://www.microsoft.com/technet/windowsvista/security/guide.mspx and XP at http://www.microsoft.com/technet/security/prodtech/windowsxp/secwinxp/default.mspx – both of which are quite useful.

Ultimately any security guidance must be customized for your personal balance between security and usability. All of these provide great starting places to either tighten or loosen security based on your specific needs. Webber, you’re right on with the “”thou shalt only use NTLMv2 authentication for Windows” just isn’t viable in every environment.” comment. While that might work for me, it wouldn’t work for many other folks.

]]>