NT Defenses
Passwords
Disable LAN Manager authentication (
How to Disable LM Authentication on Windows NT (Q147706)
Have a strong password policy (
Setting Account Policy
)
Enforce the use of strong passwords
Implement SYSKEY security enhancements (provided with Service Pack 3)
Windows NT System Key Permits Strong Encryption of the SAM (Q143475)
Audit access to key files (
Tripwire
)
Use one-time passwords
Use Biometric authentication
Review the Security Logs
. (
NTLast
)
Protect the NT log files
set proper permissions on log files
store log files on separate server
make regular backups of log files
use write once media
encrypt log files
Examine the files on a disk drive for unauthorized activity. (
Forensic Toolkit
)
Listen for attempts to scan ports (
Attacker
)
Scan for Cracking Tools
BOPing - checks for BackOrifice
Retina - Network Security Scanner
DDOSPing
- checks for DDOS zombies
Keep an Inventory of Active Accounts
Limit Who Has Domain Administrator Access
How to Identify the User Who Changed the Administrator Password (Q173939)
Trusted Systems guide to the National Security Agency (NSA)
The US Navy's Guide to Securing NT
Microsoft's Guide to securing Windows NT
Please mail any comments about this page to summers_wayne@ColumbusState.edu