Windows Server 2003 Recommended Baseline Security

19.06.2014 Views
Unclassified ITSG for Windows Server 2003 4.7.5.1 General File Access Controls Table 1 – General File Access Controls File/Folder Name Audit Administrators & System Authenticated Users Found Value C:\ Full Control Read C:\*.* Full Control Full Control C:\boot.ini S&F Full Control N/a C:\ntdetect.com S&F Full Control N/a C:\ntldr S&F Full Control N/a C:\ntbootdd.sys S&F Full Control N/a C:\autoexec.bat S&F Full Control Read C:\config.sys S&F Full Control Read C:\Program Files F Full Control Read & Execute C:\IO.sys S&F Full Control Change C:\MSDOS.sys S&F Full Control Change C:\Documents and Settings\All Users F Full Control Change C:\Documents and Settings\All Users\Documents F Full Control Read C:\Documents and Settings\All Users\Application Data F Full Control Read & Create C:\temp\*.* and subdirectories Full Control Traverse, Add C:\Users and subdirectories F Admin:rwxd Full Control C:\Users\Default and subdirectories F System: Full Control List Read Write Execute C:\WIN32APP and subdirectories S&F Full Control Read %windir% and subdirectories F Full Control Change %windir%\*.* F Full Control Read %windir%\*.ini F Full Control Change %windir%\LocalMon.dll Full Control Read %windir%\PrintMan.hlp Full Control Read %windir%\config\*.* S&F Full Control List %windir%\Help\*.* Full Control Read & Execute %windir%\repair\*.* and subdir S&F Administrator N/a %windir%\security S&F Full Control Read & Execute 106 March 2004 Server Policy Files

Windows Server 2003 Recommended Baseline Security (ITSG-20) File/Folder Name Audit Administrators & System Authenticated Users Found Value %windir%\system\*.* S&F Full Control Read %windir%\system32 F Full Control Read %windir%\system32\ autoexec.nt cmos.ram config.nt midimap.cfg S&F Full Control change %windir%\system32\passport.mid S&F Full Control Full Control %windir%\system32\CatRoot S&F Full Control N/a %windir%\system32\config S&F Full Control List %windir%\system32\config\*.* S&F Full Control List %windir%\system32\config\userdef S&F Full Control System:change Read %windir%\system32\dhcp and subdir Full Control Read %windir%\system32\dllcache S&F Full Control N/a %windir%\system32\drivers S&F Full Control Read %windir%\system32\ias S&F Full Control Read & Execute %windir%\system32\inetserv\Metabase.bin S&F Full Control Read & Execute %windir%\system32\inetserv\metaback S&F Full Control N/a %windir%\system32\mui S&F Full Control N/a %windir%\system32\os2\dll\oso001.009 Full Control Read %windir%\system32\os2\DLL\Doscalls.dll Full Control Read %windir%\system32\os2\dll\netapi.dll Full control Full control %windir%\system32\RAS\ S&F Full Control Read %windir%\system32\RAS\*.* S&F Full Control Read %windir%\system32\repl\export Full Control Change %windir%\system32\repl\export\scripts Full Control Read %windir%\system32\repl\ export\scripts\*.* Full Control Read %windir%\system32\repl\import Full Control Change %windir%\system32\repl\import\*.* Full Control Change %windir%\system32\repl\import\scripts\ Full Control Read %windir%\system32\repl\import\scripts\*.* Full Control Read Server Policy Files March 2004 107

Page 1 and 2: IT Security Guidance Windows Server

Page 3 and 4: Windows Server 2003 Recommended Bas






Page 15: Windows Server 2003 Recommended Bas






Page 28 and 29: Unclassified ITSG for Windows Serve























































































server

registry

install

baseline

determines

recommended

ipsec

netsh

static

microsoft

www.cse-cst.gc.ca

Windows Server 2003 Recommended Baseline Security

Windows Server 2003 Recommended Baseline Security ... View more Windows Server 2003 Recommended Baseline Security

Delete template?

Save as template ?

Windows Server 2003 Recommended Baseline Security Windows Server 2003 Recommended Baseline Security