기술문서 windows_2008_security_guide.pdf
2017.08.25 18:12
윈도우 서버의 기초적은 보안설정과 기본적인 설정등등 많이 다루고 있습니다.
Windows 2008 Security Guide Line : windows_2008_security_guide.pdf
1. 계정 관리 ···································································································· 1
1.1 Administrator 계정 관리 ······································································ 1
1.2 Guest 계정 관리 ···················································································· 3
1.3 불필요한 계정 삭제 ··············································································· 5
1.4 계정 잠금 임계값 설정 ·········································································· 7
1.5 계정 잠금 기간 설정 ············································································· 9
1.6 패스워드 최소 길이 설정 ···································································· 11
1.7 패스워드 최대 사용 기간 설정 ·························································· 13
1.8 패스워드 최소 사용 기간 설정 ·························································· 15
1.9 패스워드 복잡도 설정 ········································································· 17
1.10 해독 불가 암호화 설정 ····································································· 19
1.11 마지막 사용자 이름 표시 숨김 설정 ··············································· 21
2. 서비스 및 보안 관리 ············································································ 23
2.1 불필요한 서비스 제거 ········································································· 23
2.2 하드디스크 기본 공유 제거 설정 ······················································· 25
2.3 공유 권한 및 사용자 그룹 설정 ························································· 27
2.4 이동식 미디어 포맷 및 꺼내기 설정 ················································· 28
2.5 CMD 파일 권한 설정 ·········································································· 29
2.6 사용자 디렉터리 접근제한 설정 ························································· 30
2.7 화면보호기 설정 ·················································································· 31
2.8 비 로그온 시 시스템 종료 불가 설정 ··············································· 32
2.9 로그온 메시지 출력 설정 ···································································· 33
2.10 원격 터미널 접속 타임아웃 설정 ····················································· 34
2.11 Autologon 기능 제어 설정 ······························································ 35
2.12 SAM 파일 접근통제 설정 ································································· 36
2.13 SAM 보안감사 설정 ·········································································· 37
3. 네트워크 서비스 보안 설정 ······························································· 40
3.1 터미널 서비스 환경설정 ······································································ 40
3.2 FTP 접근제어 설정 ············································································· 41
3.3 FTP 디렉터리 접근제어 설정 ···························································· 42
3.4 FTP 서비스 구동 점검 설정 ······························································ 43
3.5 익명 FTP 제거 설정 ··········································································· 44
3.6 Telnet 보안 설정 ················································································ 45
3.7 SNMP 서비스 설정 ············································································· 46
3.8 DNS 보안 설정 ···················································································· 47
3.9 SMTP 서버 릴레이 제한 설정 ··························································· 48
4. IIS 서비스 보안 설정 ··········································································· 49
4.1 IIS 서비스 구동 점검 ·········································································· 49
4.2 디렉터리 리스팅 제거 설정 ································································ 51
4.3 CGI 실행제한 설정 ·············································································· 52
4.4 상위 디렉터리 접근금지 설정 ···························································· 53
4.5 불필요한 파일 제거 ··········································································· 54
4.6 웹 프로세스 권한 제거설정 ································································ 55
4.7 DB연결 취약점 점검 ··········································································· 56
4.8 WebDAV 비활성화 설정 ···································································· 57
4.9 오류메시지 설정 ·················································································· 58
4.10 웹 파티션과 시스템 파티션 분리 설정 ··········································· 59
4.11 로그 디렉터리/파일권한 관리 ··························································· 60
5. 로그 관리 ·································································································· 62
5.1 정책에 따른 시스템 로깅 설정 ·························································· 62
5.2 로그의 정기적 검토 및 보고 ······························································ 64
5.3 이벤트 뷰어 설정 ················································································· 66
5.4 원격 로그파일 접속 설정 ···································································· 67
6. 백신 관리 ·································································································· 69
6.1 백신프로그램 설치 ··············································································· 69
6.2 백신엔진 최신 업데이트 설정 ···························································· 70
6.3 바이러스 실시간 감시 설정 ································································ 72
6.4 주기적인 바이러스 점검 설정 ···························································· 74
7. 패치 관리 ·································································································· 75
7.1 최신 서비스 팩 적용 ··········································································· 75
7.1 최신 HOT FIX 설치 ··········································································· 76
댓글 0
번호 | 제목 | 날짜 | 조회 수 |
---|---|---|---|
170 | Tibero test sql문, SCHEMA_OBJECT_SAMPLE | 2023.10.25 | 9 |
169 | 급증하는 키싱(Qishing) 공격 | 2023.11.14 | 9 |
168 | Webtob Install for Windows and command | 2023.10.24 | 10 |
167 | Webtob Install for Linux | 2023.10.23 | 11 |
166 | Tibero 관리 3 | 2023.10.25 | 13 |
165 | Red Hat Enterprise Linux Certification Matrix for Dell PowerEdge Servers | 2023.11.02 | 14 |
164 | Jeus 8.5 + WebtoB 연동및 운영 | 2023.10.24 | 16 |
163 | Jeus 8.5 설치및 운영 | 2023.10.24 | 20 |
162 | tibero 7 install for linux | 2023.11.06 | 20 |
161 | Tibero 관리 2 | 2023.10.25 | 23 |
160 | wmic useraccount list brief | 2021.04.01 | 28 |
159 | Red Hat Enterprise Linux technology capabilities and limits | 2021.05.13 | 30 |
158 | Linux system service bug gives you root on every major distro | 2022.02.05 | 34 |
157 | 2021년도 주요정보통신기반시설 기술적 취약점 분석ㆍ평가 방법 상세가이드 | 2022.06.23 | 36 |
156 | Jeus7 Getting Start Guide | 2021.03.09 | 37 |