Security Sage's Guide to Attacking & Defending Windows Server 2003

There are likely other books to be written during this same time frame on the security implications of Windows Server 2003. However, if history is any indicator, a large percentage of these will only cover how to install and configure specific features--not give readers the practical knowledge they need to defend their resources from both a management and operational level. At the strategic level, the initial chapters will be dedicated to informing the busy CISO or security manager about enterprise level security implications accompanying Windows Server 2003. It will highlight high-level concerns and improvements and seek to answer these questions: What significant security-related changes have been made to Server 2003? How are these features different than those in Windows 2000 Server? Will these changes simplify how I manage my organization's security? Can Windows Server 2003 improve my organization's security posture? The remainder (and larger percentage) of the book will focus on providing tactical information to security practitioners who need to be aware of both documented and undocumented features in the operating system. Those looking for information on the following topics will likely add this book to their library: Internal Compromise, Attacking and Defending Server 2003 Networking Services, Attacking and Defending Server 2003 with Physical Access, Attacking and Defending Server 2003 IIS 6.0, Attacking and Defending Server 2003 Terminal Services, Attacking and Defending Server 2003 Remote Access, Attacking and Defending Server 2003 Certificate Services, Attacking and Defending Server 2003 Internet Clients, Attacking and Defending Server 2003 Directory Services, External Compromise, Methodical attack and penetration of Windows 2003 Server. Because Windows Server 2003 closely resembles Windows 2000 Server, some of the tactical information may apply to both platforms. Notation will be made where certain vulnerabilities and exploits can still be used on the new platform as well as those instances where they have changed. In this regard, systems administrators, security administrators, consultants, and IT auditors looking for information about both platforms will benefit from this book.Birkholz, Erik Pace is the author of 'Security Sage's Guide to Attacking & Defending Windows Server 2003', published 2004 under ISBN 9781931836029 and ISBN 1931836027.