Best way to secure a Windows server?

[SandraWang]

My host told me to try and see with the windows OS on my server, so I could get the streaming quality that I wanted.

Because .htaccess won't work on windows, we had to set up a temporary solution to make it look like my members area was protected, but someone found out about it, and then the little hackerboys were all over my site.

I'm getting WebQuota with Authentix installed right now, but I want to make my server at secure as possible. So to you Windows gurus that helped me alot in the last thread I had, could you please tell me all the stuff I will need to set ut to secure my server as good as possible?

All little tips, hints, software URL's and other ideas are greatly appreciated!

Anything to stop attacs and break ins on my server, password trading, leeching of my content, hotlinking, and password trades and adding false usernames and passwords to my password files and such...

[Gutterboy]

Step 1: Format c:

Step 2: Install Open/FreeBSD

[asuna]

Quote:

Originally posted by Gutterboy
Step 1: Format c:

Step 2: Install Open/FreeBSD

i was going to psot that, or
Just don't plug it to the net, ultimate security

[SandraWang]

No, we just had that discussion, and ISPrime has worked alot to set up my windows server, they tell me not to go back to Unix, before we see how this goes. As someone mentioned on my other thread, a windows server that is set up CORRECTLY will be as secure as an Unix box... So I'll take his word for it and if everything fucks up, I'll go back to Unix later. (Been on Unix for 2 years and it worked great, but I wanted real .wmv streaming, so I needed Windows)...

SO please don't keep on arguing about Unix, I just want to know all the best tips to get the Windows server secure

[SandraWang]

...Where are all the Windows gurus when you need them?

[lEricPl]

http://www.microsoft.com/technet/sec...asp?frame=true


http://www.microsoft.com/technet/tre...00/default.asp


http://www.microsoft.com/technet/tre...t/w2ksvrcl.asp


http://www.microsoft.com/technet/sec...asp?frame=true


http://www.microsoft.com/security/default.asp

[davvve]

Quote:

Originally posted by Gutterboy
Step 1: Format c:

Step 2: Install Open/FreeBSD

yep, that's the only way

[davvve]

Quote:

Originally posted by SandraWang
...Where are all the Windows gurus when you need them?

maybe there are non

[Tru]

There is a service pak that solves all of those security issues

its called

UNIX

Having a windows server is like walking around in prison yard wearing only chaps, sooner or later your gonna get F&*ked

[MrPopup]

[ServerGenius]

Just turn it off even offline it's not secure from crashing

DynaMite

[ServerGenius]

Turn on the memory stats in the task manager and watch your memory
go bye, bye as days pass by LOL

DynaMite

[theking]

My brother works for a college. He is their computer wizz. He maintains their servers and sets up servers as needed. Some of the servers are window servers and some use linux. When I told him that window servers (according to many on the board are not as secure as other systems) he said that is not necessarily the case. If one installs all of the patches and keeps up with the installation of new patches it is at least just as secure as the linux systems. He said now that linux is being used more and more that the patches are beginning to flow for linux also. He said that the worse thing about using windows is that it takes a greater effort to keep things running smoothly. By the way some of the servers use other systems as well. Bottom line he considers windows to be as secure as the others, but more of a pain. He also said that none of the systems are truely secure.

[Juicy D. Links]

Quote:

Originally posted by MrPopup

[Juicy D. Links]

Quote:

Originally posted by Tru


Having a windows server is like walking around in prison yard wearing only chaps, sooner or later your gonna get F&*ked

Chaps

[PowerCum]

http://www.securityfocus.com
http://packetstorm.widexs.nl


And READ READ READ, then install any unix you want or get hacked in less than 48 hours by any stupid 16 years old kid.

[keyDet79]

Run a windows update check daily. Patches all the latest *common* vulnerabilities. Windows can be more secure than a linux if handled right, you don't have all the open source guys looking for vulnerabilities in its code

[lEricPl]

Quote:

Originally posted by keyDet79
Run a windows update check daily. Patches all the latest *common* vulnerabilities. Windows can be more secure than a linux if handled right, you don't have all the open source guys looking for vulnerabilities in its code

Actually with Windows Update v4 it does it automatically.

[IntenseCash]

Step One:
Get a Unix Server

Step Two:
Transfer everything from your Windows server to Unix

Step Three:
Have piece of mind

[jact]

Do your streamling on the piece of shit, do your actual websites and EVERYTHING else on FreeBSD.

[foe]

switch to linux

[Why]

switch to an apple server most secure thing on the planet, look up the raio of mac hacks to windows hacks. or even *nix hacks for that matter.

windoze is CRAP.

[ServerGenius]

Quote:

Originally posted by Why
switch to an apple server most secure thing on the planet, look up the raio of mac hacks to windows hacks. or even *nix hacks for that matter.

windoze is CRAP.

The reason for this.....who the hell wants to hack a MAC?

There is only 1 secure OS and that's OpenBSD it had only 1
exploit in the last 6 years.....and was fixed the same day.
Do a search and you will see.....OpenBSD is the 1 and only
TRUE secure OS.......allthough most exploits are possible
because of bad admins.........not the OS itself.

DynaMite

[ServerGenius]

Quote:

Originally posted by DynaSpain


The reason for this.....who the hell wants to hack a MAC?

There is only 1 secure OS and that's OpenBSD it had only 1
exploit in the last 6 years.....and was fixed the same day.
Do a search and you will see.....OpenBSD is the 1 and only
TRUE secure OS.......allthough most exploits are possible
because of bad admins.........not the OS itself.

DynaMite

And YES! that includes windows too

DynaMite

[Cyber3]

Here you go, http://www.xde.net/index.jsp

Tell him Kevin sent ya, this is what Htaccess is to Unix for a Win2k box.

Stops all hotlinking, works great I am using it now.

I still run a couple of Win2k servers if done right they can do pretty good but not worth the effort.

In the future I would not run Win2k I would install Free BSD Win2k is to much of a pain in the ass.

Regards,

Kevin

[wolfie]

Wake up to yourself.

Even Micro$oft uses Unix servers.

[Cyber3]

Quote:

Wake up to yourself.

Hey man I am just helping a girl out

I have 16 servers at Candid hosting 13 are Free BSD 3 are Win2k.

[ronbotx]

Secure Windows server. Unhackable????


Unplug it.