Join Amazon Prime and ship Two-Day for free and Overnight for $3.99. Already a member? Sign in.

Quantity:

More Buying Choices

52 used & new from $0.01

Have one to sell? Sell yours here

Tell the Publisher! I�d like to read this book on Kindle Don�t have a Kindle? Get yours here.

Securing Windows NT/2000 Servers for the Internet (Paperback)

by Stefan Norberg (Author)

4.1 out of 5 stars See all reviews (11 customer reviews)

List Price:	$29.95
Price:	$22.76 & eligible for FREE Super Saver Shipping on orders over $25. Details
You Save:	$7.19 (24%)
	o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o

In Stock.
Ships from and sold by Amazon.com. Gift-wrap available.

Only 2 left in stock--order soon (more on the way).

Want it delivered Monday, July 20? Choose One-Day Shipping at checkout. Details

26 new from $1.50 26 used from $0.01

Also Available in:	List Price:	Our Price:	Other Offers:
Paperback (Bargain Price)	$29.95	$11.98	14 used & new from $3.31

Like this book? Find similar titles from O'Reilly and Partners in our O'Reilly Bookstore.

› See more product promotions

Best Value

Editorial Reviews

Product Description
In recent years, Windows NT and Windows 2000 systems have emerged as viable platforms for Internet servers. More and more organizations are now entrusting the full spectrum of business activities--including e-commerce--to Windows. Unfortunately, the typical Windows NT/2000 installation makes a Windows server an easy target for attacks, and configuring Windows for secure Internet use is a complex task. Securing Windows NT/2000 Servers for the Internet suggests a two-part strategy to accomplish the task:

"Hardening" any Windows server that could potentially be exposed to attacks from the Internet, so the exposed system (known as a "bastion host") is as secure as it can be.
Providing extra security protection for exposed systems by installing an additional network (known as a "perimeter network") that separates the Internet from an organization's internal networks.

Securing Windows NT/2000 Servers for the Internet is a concise guide that pares down installation and configuration instructions into a series of checklists aimed at Windows administrators.

About the Author
Stefan Norberg is an independent network security consultant based in Stockholm, Sweden. Before becoming an independent contractor, he worked for Hewlett-Packard Consulting, where he built everything from large firewalls to highly available Unix clusters. During the last couple of years, he has spent most of his time designing and implementing Internet firewalls using building blocks like Cisco IOS, HP-UX, Linux, and Windows NT/2000. Every now and then, he enjoys teaching Windows NT/2000 classes. Stefan is an MCSE+Internet and Microsoft Certified Trainer.

Product Details

Paperback: 216 pages
Publisher: O'Reilly Media, Inc.; 1 edition (November 2000)
Language: English
ISBN-10: 1565927680
ISBN-13: 978-1565927681
Product Dimensions: 9.2 x 7 x 0.6 inches
Shipping Weight: 1 pounds (View shipping rates and policies)

Average Customer Review: 4.1 out of 5 stars See all reviews (11 customer reviews)

Amazon.com Sales Rank: #1,127,047 in Books (See Bestsellers in Books)

Would you like to update product info or give feedback on images?

Look Inside This Book

Browse Sample Pages:
Front Cover | Table of Contents | First Pages | Index | Back Cover

Citations (learn more)

1 book cites this book:

Home Networking Survival Guide by David Strom on page 191

Tags Customers Associate with This Product

(What's this?)

Click on a tag to find related items, discussions, and people.

microsoft(2)

operating system(2)

internet(1)

network security(1)

security(1)

sysadmin - security(1)

windows nt(1)

See all 8 tags...

Help others find this product — tag it for Amazon search

No one has tagged this product for Amazon search yet. Why not be the first to suggest a search for which it should appear?

Sell a Digital Version of This Book in the Kindle Store

If you are a publisher or author and hold the digital rights to a book, you can sell a digital version of it in our Kindle Store. Learn more

Customer Reviews

11 Reviews

5 star:		(4)
4 star:		(5)
3 star:		(1)
2 star:		(1)
1 star:		(0)

Average Customer Review

4.1 out of 5 stars (11 customer reviews)

Share your thoughts with other customers:

Create your own review

Most Helpful Customer Reviews

18 of 18 people found the following review helpful:

5.0 out of 5 stars Excellent NT/2000 Security Resource, December 14, 2000

By	Michael C. Forrester "uliv1x" (Lakewood, CO United States) - See all my reviews

Stefan Norberg wrote one of the first good securing NT documents that were available on the Internet. This book takes that paper to the next level. I have read and researched quite a bit on securing NT/2000 and from what I've read so far (not quite done yet), I consider this one of the best resources. The section on installing SSH on NT is extremely helpful for those who have not tackled that beast before. Norberg's original paper was considered by many (including myself) to be essential reading for anyone concerned with NT/2000 security. This book is even better and should be a part of the library of any responsible NT/2000 admin.

Comment Comment | Permalink | Was this review helpful to you? Yes No (Report this)

15 of 15 people found the following review helpful:

4.0 out of 5 stars A must for any Windows NT/2k admin wanting to stay employed, July 28, 2001

By	Richard Bejtlich "TaoSecurity.com" (Metro Washington, DC) - See all my reviews (TOP 500 REVIEWER) (REAL NAME)

I am a senior engineer for network security operations. I read "Securing Windows NT/2000 Servers for the Internet" (SWNS) to better advise clients on secure configuration of their Windows platforms. Stefan's wonderful book is a testament to the fundamental insecurity of stock Windows platforms. Luckily, his advice transforms vulnerable systems into bastion hosts suitable for deployment on the hostile Internet.

SWNS' key insight is the need to cripple many default Windows services in the interest of security. These troublesome "features" include NetBIOS, the Workstation service, the Server service, and others. In fact, after creating a bastion host, Stefan says "there's no way of administering it remotely!" (This is the case because NT's standard remote admin tools, like Event Viewer and Server Manager, require RPC using NetBIOS.) Thankfully, Stefan provides several options for secure remote administration, like pcAnywhere, Windows 2000 Terminal Services, and open source alternatives (Secure Shell, Virtual Network Computer, etc.)

I concur with an earlier review noting the lack of attention for Microsoft's IIS web server. Hundreds of thousands of Windows machines were recently compromised by the "Code Red" worm, demonstrating two facts. First, Windows is frequently used to host web servers. Second, IIS is frequently deployed insecurely. A second edition of SWNS should add a chapter on configuring IIS. I was also unhappy with Stefan's dismissal of intrusion detection technology in chapter six. He should try the Windows port of the open source Snort IDS.

Overall, SWNS is a must-buy for Windows administrators. The book is a quick read, but it explains many aspects of the internal workings of Microsoft's premier operating systems. As the title implies securing "servers" and not just the underlying operating system, future editions should discuss proper deployment of popular applications for Windows NT/2000, like IIS and Exchange.

Comment Comment | Permalink | Was this review helpful to you? Yes No (Report this)

14 of 14 people found the following review helpful:

4.0 out of 5 stars Great server security info here for smaller environments, January 7, 2001

By	Rob (Seattle, WA USA) - See all my reviews

I have been waiting for a book like this for quite a while. For anyone interested in securing W2k Internet servers this book has some excellent advice. The networking security tips are particularly useful and relevant. I was disappointed that there was not more IIS specific security information, given that most W2K servers on the Internet are running IIS. Also, as the author himself points out, much of the changes he is proposing to harden servers are not practical in an enterprise-sized environment. By hardening servers as he describes you loose much of the scalable administration NT and W2K where built around. I would not want to implement the majority of these changes on a production environment of more than 30 or so servers for that reason. I also would not put pcanywhere on any production server as a way to get around just having disabled the functionality of the native remote administration tools. Having said all that, buy this book if you are responsible for securing your Microsoft servers. There is enough great information here to make it well worth it.

Comment Comment | Permalink | Was this review helpful to you? Yes No (Report this)

Share your thoughts with other customers: Create your own review

› See all 11 customer reviews...

Most Recent Customer Reviews

4.0 out of 5 stars Pretty good summation of security practices
The author certainly understands windows security from the administrator's point of view. He isn't going to launch into the deficiencies of Lanman in great detail, but he will... Read more

Published on September 23, 2003 by Keith Tokash

4.0 out of 5 stars Good book, hope they update it soon.
This book was probably just right when it was released, but it's time to update it for 2000/XP and drop NT entirely. Read more

Published on December 31, 2002 by Brett Noble

5.0 out of 5 stars Excellent for *nix Admins needing to secure WinNT/2000
As a Solaris/Linux admin, I had no clue how to secure a windows machine. I knew to turn off services I recognized but that is about it. Read more

Published on May 7, 2002 by Kip Perkins

4.0 out of 5 stars An important resource
As network security becomes more and more important, it's nice to see something very specific to Windows NT/2000. Read more

Published on January 23, 2002 by J. J. Kwashnak

2.0 out of 5 stars Starting from scratch? This'll work, otherwise don't bother
This is an OK book if you want to get a handle on how to install a secure server only. If you already have a server that is installed and configured, you won't find this book that... Read more

Published on October 30, 2001 by Brian Brackeen

3.0 out of 5 stars A great security book if it fits your needs and architecture
This is a GREAT book for 2 scenarios:

1) You want a greater understanding of how to secure the NT/2000 operating system (without using 3rd party add-on software). Read more

Published on July 29, 2001 by Chad

5.0 out of 5 stars Required reading for all NT/2000 Administrator
I run an ASP based on NT and 2000 servers. This book provides real solutions to help minimize your risk of your servers being hacked. Read more

Published on June 18, 2001

5.0 out of 5 stars Very highly recommended for systems administrators
In Securing Windows NT/2000 Servers For The Internet, Stefan Norberg is designed to assist the experienced users of Windows NT/2000 to protect their computers from Internet... Read more

Published on January 23, 2001 by Midwest Book Review

› See all 11 customer reviews...

Customer Discussions

Beta (What's this?)

New! See all customer communities, and bookmark your communities to keep track of them.

This product's forum (0 discussions)

	Discussion	Replies	Latest Post
	No discussions yet

Ask questions, Share opinions, Gain insight

Start a new discussion

Topic:

First post:

Receive e-mail when new posts are made

Prompts for sign-in

[Cancel]

Guidelines

Active discussions in related forums

Discussion	Replies	Latest Post
internet Free Blog/IM Novel	0	1 day ago
textbook Textbooks for Kindle DX?	40	2 days ago
textbook Does anyone use Discovering Geometry: An Investigative Approach?	5	2 days ago
microsoft Given the gripes and complaints about Vista, why bother?	31	2 days ago
microsoft Is Windows 7 free or do you have 2 buy it?	82	2 days ago
microsoft Windows 7 pricing	14	5 days ago
microsoft How low will Microsoft stoop?	19	6 days ago