Useful Links

Print view

The links listed here are either definitive, summaries, or relevant, but non-security related.

Microsoft Windows:

• 832017 - Port Requirements for the Microsoft Windows Server System — if you configure your own firewall, this is a good resource to troubleshoot communications issues.
• Best practice methods for Windows 2000 domain controller setup
• BitLocker Drive Encryption — think about your recovery plan before implementing.
• Checklists Provided in Windows Server 2003 Help
• Common Mistakes When Upgrading a Windows 2000 Domain To a Windows 2003 Domain — in case you wondered why you pay for experienced experts.
• Comparison of 32-bit and 64-bit memory architecture for 64-bit editions of Windows XP and Windows Server 2003 — if you think you need to go “big”.
• Download the Windows 2000 Security Recommendation Guides -- National Security Agency --
• External Threat Learning Resources
• How to configure a subnetted reverse lookup zone on Windows NT, Windows 2000, or Windows Server 2003 — very technical, but a great “how to”.
• How To Configure Network Load Balancing Parameters in Windows 2000
• How To Configure Network Load Balancing Parameters in Windows Server 2003
• How to obtain the latest service pack for Office 2003 — if you don’t use Update, you can get the SP directly.
• How To Set Up TCP/IP for Network Load Balancing in Windows Server 2003
• How to support wireless connections in a Windows 2000 domain
• How to Use the IIS Security What If Tool — if you are running IIS, this is a utility you should look at.
• Microsoft ForeFront — Microsoft security product.
• Microsoft Help and Support
• Microsoft Midsize Business IT Center: Security
• Microsoft Most Popular Security Downloads — a very useful summary of utilities available, without the effort of finding them.
• Microsoft Resources for Reducing Malware
• Microsoft Security and Compliance Solutions Guidance
• Microsoft Security Center
• Microsoft TechNet Identity and Access Management Resources
• Microsoft TechNet Security Center
• Microsoft TechNet Security Update Management Learning Resources
• Microsoft TechNet Threat and Vulnerability Mitigation Resources
• Overview of the Windows XP Security Guide — definitive, and at 200 pages it should be.
• Overview to the Threats and Countermeasures Guide — another cracking read, at 350 pages.
• Overview to the Windows Server 2003 Security Guide — at over 240 pages...well, you get the idea.
• RAM, Virtual Memory, Pagefile and all that stuff — a bit technical, but a great paper on virtual memory in the Windows environment.
• Security Lockdown: Utilizing Standard Microsoft Tools to Secure Your Network
• Security: Deconstructing Common Security Myths — an education and a worthwhile read. 
• Small Business Security from Microsoft Small Business — great check list.
• Using Microsoft Active Directory to Lock Down Your Network
• Windows Frequently Asked Questions (FAQ) — great resource for the beginner to the experienced technician.
• Windows Server 2003 Networking and Access Technologies
• Windows Vista Beta 2 BitLocker Drive Encryption Step-by-Step Guide
• Windows Vista: Resources for IT Professionals
• Windows Vista Technical Library

Linux:

• grsecurity — suite of security tools and documentation, licensed under GPL.
• Linux & Wireless LANs — great for the Linux user.
• Linux HeadQuarters - Single list of HOWTOs — a very definitive list.
• Linux Knowledge Base and Tutorial — if you want to learn about Linux.
• LinuxSecurity
• ModSecurity (mod_security) - Open Source Web Application Firewall

General:

• (ISC)2 — trade association.
• Center for Internet Security — very technical, but another great resource.
• Computer Security Institute — for the security professional.
• Dark Reading - No Easy Fix for Branch Office Blues - Security News Analysis — great article about remote connectivity security concerns.
• Enterprise Systems | The Attack from Within: Stopping Malicious Insiders
• eWEEK.com Security Center — good industry information.
• Help Net Security - Software for Windows
• Information Security Forum
• ISACA® - Serving IT Governance Professionals — trade association.
• ISSA — trade association.
• National vulnerability database
• National Security Institute
• NIST Special Publication 800-14
• NSA Security Configuration Guides — great detail, but most are several hundred pages.
• PC Magazine Buying Guide: Security Suites — if you are in the market, this might help you make an informed decision.
• Redmond | Column: A Wall Around Your Servers — using IPSec
• RSA Security - Content Library — some useful whitepapers, from a leader in security products and solutions.
• SANS — trade association.
• SearchSecurity Research Library — good resource, but a bit heavy going.
• SecurityFocus
• Web Application Security Consortium - Web hacking Incidents Database (WHID) — very useful for demonstrating the need of a comprehensive security plan.

Disclaimer

The information on this site is provided "as is" and any express or implied warranties, including, but not limited to, the implied warranties of merchantability and fitness for a particular purpose are expressly disclaimed. In no event shall the contributors be liable for any direct, indirect, incidental, special, exemplary, or consequential damages (including, but not limited to, procurement of substitute goods or services; loss of use, data, or profits; or business interruption) however caused and on any theory of liability, whether in contract, strict liability, or tort (including negligence or otherwise) arising in any way out of the use of this site, even if advised of the possibility of such damage.

Trademark Information

Microsoft, MS-DOS, Windows, Windows NT, Windows 98, Windows 95, Windows for Workgroups, and Windows 3.1, Windows 2000, Windows XP, Windows 2003 Server, Vista, and Active Directory, are either registered trademarks or trademarks of Microsoft Corporation in the U.S.A. and other countries. All other names are registered trademarks or trademarks of their respective companies.

For more information on Microsoft trademarks go to http://www.microsoft.com/library/toolbar/3.0/trademarks/en-us.mspx

Linux is a registered trademark of Linus Torvalds.

Ubuntu is a registered trademark of Canonical Ltd.

Fedora is a trademark of Red Hat.

Knoppix is a trademark of Klaus Knopper.

Mandriva is a trademark of Mandrivasoft.

Novell is a registered trademark and openSUSE and SUSE are trademarks of Novell, Inc.

All trademarks are the property of their respective owners.

C3 Security Consulting LLC is a partner of Microsoft, under the Microsoft partnership program.

No other partner relationship is implied or intended.