Re: jim

  • From: "Jim Harrison" <jim@xxxxxxxxxxxx>
  • To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
  • Date: Tue, 30 Oct 2001 17:15:13 -0800

What happens depends largely of your deployment scenario (enterprise,
standalone AD member, standalone non-member, etc.), the rights of the ISA in
each scenario and the option you chose when you ran the wizard.
Bear in mind that "secure your mail server" is not the same as "secure your
server".

Jim Harrison
MCP(NT4, 2K), A+, Network+, PCG


----- Original Message -----
From: "Armando Treviño López" <armando.trevino@xxxxxxxxxxx>
To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
Sent: Tuesday, October 30, 2001 15:16
Subject: [isalist] Re: jim


http://www.ISAserver.org


I am trying to publish a web server and secure an exchange server by putting
them behind the ISA.
I have already run the security wizard. So what happen? can I still publish
a server or maybe it will be restrictive in this aspect.
Also is there a form to come back to the default installation after running
the security wizard?

Thanks.


-----Original Message-----
From: Jim Harrison [mailto:jim@xxxxxxxxxxxx]
Sent: Tuesday, October 30, 2001 5:09 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] Re: jim


http://www.ISAserver.org


While it's true that Windows 2000, in its default installation, is not as
secure as it might be for enterprise deployment (whole different discussion,
that), it's also true that running the security wizards that ship with ISA
have proven to be more restrictive than helpful.
The documentation that exists regarding them is sparse at best and is pretty
hard to understand except to those who understand the fine details of the
Windows 2000 security.   I don't number myself among them, needless to say.

Jim Harrison
MCP(NT4, 2K), A+, Network+, PCG


----- Original Message -----
From: "Brian Tirch" <btirch@xxxxxxxxxxxx>
To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
Sent: Tuesday, October 30, 2001 14:55
Subject: [isalist] jim


http://www.ISAserver.org


Jim,

Why do you say never run the security wizard, no this will not lock
down the exchange server but this will help tighten up the servers policies
that are implemented, and well all know how out the box ms is not that
secure.....

-----Original Message-----
From: Jim Harrison [mailto:jim@xxxxxxxxxxxx]
Sent: Tuesday, October 30, 2001 5:48 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: Hacking, security

http://www.ISAserver.org


Never run the security wizard!!!
Seriously, it's not the answer to locking down the Exch server.
Try  this for a good starting point...
http://www.microsoft.com/technet/treeview/default.asp

Jim Harrison
MCP(NT4, 2K), A+, Network+, PCG


----- Original Message -----
From: "Brian Tirch" <btirch@xxxxxxxxxxxx>
To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
Sent: Tuesday, October 30, 2001 13:00
Subject: [isalist] RE: Hacking, security


http://www.ISAserver.org


On way is to run the security wizard

Brian Tirch
Entre Information Services
757-599-5866 ext 123


-----Original Message-----
From: Bemen [mailto:bemen@xxxxxxxxxxxxxxxx]
Sent: Tuesday, October 30, 2001 3:06 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] Hacking, security

http://www.ISAserver.org


Hy!

First, thank all of you who helped me to solve my exchange problems...
I still have some stuff going on, but it's a different problem. I think
that the previous administrator on my network who got kicked out wants to
hack into my ISA/EXCHANGE server. I'm not sure, but overnight strange
things happen and next day my boss calls me that the server is not working,
emails don't go out, stuff like that. IIs there a way to log these things?
Secondly, who can I make my ISA more secure??

Thank for the help!

Bemen


------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
btirch@xxxxxxxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')

------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
jim@xxxxxxxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')



------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
btirch@xxxxxxxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')

------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
jim@xxxxxxxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')



------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
armando.trevino@xxxxxxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')

------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
jim@xxxxxxxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')

Other related posts:

  1. Home
  2. isalist
  3. Archive
  4. 10-2001