Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 385
  • Last Modified:

Important Services in Windows 2003,

I would like to know more about important services in Win 2003 that should be set to disabled. In unix we had r-services, telnet as opposed to SSH. In there any services that should be set to disabled or replaced by newer services in Windows.
I have looked at MSB , CISE Security guide, but still confused which services have the greater impact on security.
0
kecoak
Asked:
kecoak
1 Solution
 
alimuCommented:
A good start is to not install anything you are not using (eg: don't install IIS if you're not using web services, don't install FTP if you're not using it, etc).
You can get Microsoft Baseline Security Analyser from Microsoft at http://www.microsoft.com/technet/security/tools/mbsahome.mspx which will identify major security issues you have.  It will show you problems, missing patches and also give you an explanation of what you need to do to correct issues.

How you lock down your server depends very much on what roles it plays, if you can tell us more about what functions it performs we may be able to provide more directed information.
0
 
Jay_Jay70Commented:
usually by default, 2003 server is fairly locked down to a "whats needed" basis, most thins that arent needed but are an option are disabled by default, usually, you don't need to go playing with the services that you may need to one a client OS such as xp.....
0
 
mattbcsCommented:
One MAJOR point, as far as w2k3 server goes, is installing Service Pack 1. Lots of security fixes are included.

Go through the add/remove programs (windows components) and remove everything you don't absolutely need.
The next step is to go through the services, and evaluate exactly what services you need to run, and disable the rest.

As far as services to disable - it depends on the what the role of the server is going to be.

One more important thing - run windows update, but click on "MICROSOFT UPDATE" - Run that, and keep your updates frequent.

Thanks,
Matt
0

Featured Post

Get your Disaster Recovery as a Service basics

Disaster Recovery as a Service is one go-to solution that revolutionizes DR planning. Implementing DRaaS could be an efficient process, easily accessible to non-DR experts. Learn about monitoring, testing, executing failovers and failbacks to ensure a "healthy" DR environment.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now