Hardening Reg vs ISA?Actually, that article only deals with two out of a whole list of them. Better that you read the KB from whence this article stems: http://support.microsoft.com/default.aspx?scid=kb;en-us;q315669 All of the settings are discussed and explanations given for the behavior of each. Regarding what settings ISA makes moot: none, if the attack comes from inside (FFT)... Jim Harrison MCP(NT4, W2K), A+, Network+, PCG http://isaserver.org/authors/harrison/ Read the books! ----- Original Message ----- From: Craft, Steve To: [ISAserver.org Discussion List] Sent: Wednesday, January 30, 2002 06:45 Subject: [isalist] Hardening Reg vs ISA? http://www.ISAserver.org I just passed by this URI: http://www.winnetmag.com/Articles/Print.cfm?ArticleID=23918 and it talks about ways to harden the Win2K Registry against various "new" TCP/IP attacks. Gurus, are any of these worth applying to an ISA perimeter host, or do the various ISA Services do a good enough job? Gurus, are any of these worth applying to web or database or mail servers published behind/through the ISA box, or do ISA's server and web proxying features make them not worth it? For example, I was thinking that a particular attack at a web server would just be passed through by ISA to the published host, in which case the published host would need updates. Thanks. ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: jim@xxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub')