Re: Hardening Reg vs ISA?

• From: "Jim Harrison" <jim@xxxxxxxxxxxx>
• To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
• Date: Wed, 30 Jan 2002 07:02:13 -0800

Hardening Reg vs ISA?Actually, that article only deals with two out of a whole 
list of them.
Better that you read the KB from whence this article stems:
http://support.microsoft.com/default.aspx?scid=kb;en-us;q315669

All of the settings are discussed and explanations given for the behavior of 
each.

Regarding what settings ISA makes moot:
none, if the attack comes from inside (FFT)...

Jim Harrison
MCP(NT4, W2K), A+, Network+, PCG
http://isaserver.org/authors/harrison/
Read the books!

  ----- Original Message ----- 
  From: Craft, Steve 
  To: [ISAserver.org Discussion List] 
  Sent: Wednesday, January 30, 2002 06:45
  Subject: [isalist] Hardening Reg vs ISA?


  http://www.ISAserver.org



  I just passed by this URI: 
http://www.winnetmag.com/Articles/Print.cfm?ArticleID=23918 

  and it talks about ways to harden the Win2K Registry against various "new" 
TCP/IP attacks. 

  Gurus, are any of these worth applying to an ISA perimeter host, or do the 
various ISA Services do a good enough job? 

  Gurus, are any of these worth applying to web or database or mail servers 
published behind/through the ISA box, or do ISA's server and web proxying 
features make them not worth it?  For example, I was thinking that a particular 
attack at a web server would just be passed through by ISA to the published 
host, in which case the published host would need updates.

  Thanks. 

  ------------------------------------------------------
  You are currently subscribed to this ISAserver.org Discussion List as: 
jim@xxxxxxxxxxxx
  To unsubscribe send a blank email to $subst('Email.Unsub') 

• » Hardening Reg vs ISA?
• » Re: Hardening Reg vs ISA?

• » Related posts
• » Previous by Date
• » Next by Date
• » This Month's Archive
• » Main Archive Page

• » View list details
• » Manage your subscription