QQRead:http://www.qqread.com/win98/2006/06/u108117061.html
Help protect newly installed servers.
In today's security environment there is a continual search for new and potentially exploitable system vulnerabilities. Post-Setup Security Updates (PSSU), another new feature of Windows Server 2003 SP1, blocks all incoming traffic to newly installed servers until the latest patches to Windows Server 2003 are downloaded and applied. PSSU also guides configuration of Automatic Updates when you first log on.
Get firewall protection from startup to shutdown.
Windows Firewall, the same core firewall technology in Windows XP Service Pack 2, is built into Windows Server 2003 SP1. Windows Firewall in Windows Server 2003 SP1 allows granular control over server and client computers through the use of Group Policy. Moreover, Windows Firewall provides boot-time protection, lowering the risk of attack just after a server is started up and while it is shutting down.
Bolster your defenses with "no execute" hardware support and software.
Data execution prevention (DEP) is a set of hardware and software technologies that performs additional checks on memory to help protect against exploitation of your system by malicious code. Windows Server 2003 SP1 fully utilizes the DEP capabilities built into servers by many manufacturers and further augments those capabilities with DEP software of its own.
Help protect your system services with stronger default settings and reducing privileges.
Services such as remote procedure call (RPC) and DCOM are integral to Windows Server 2003 and make an attractive target for hackers. By requiring greater authentication for calls of these services, Windows Server 2003 Service Pack 1 helps establish a minimum threshold of security for all applications that use these services, even if they possess little or no inherent security.
Isolate out-of-date virtual private network (VPN) assets.
VPN Quarantine automatically provides the means for limiting network access for machines on virtual private networks that are not current with regards to security updates. This prevents you from having to write your own ad hoc scripts to affect this facet of sound network security.
Monitor and audit your Internet Information Services (IIS) configuration settings.
The metabase is the XML-based, hierarchical store of configuration information for Internet Information Services 6.0. The ability to audit this store allows network administrators to see which user accessed the metabase in case it becomes corrupted.
Windows Firewall Policy Management
Windows Server 2003 SP1 includes new Group Policies that help IT Pros centralize client and server firewall management, including application rules, port rules, and firewall logging at the client and server to help improve security in the enterprise while maintaining centralized configuration and deployment.
Help Secure Internet Explorer.
Internet Explorer now contains many enhancements to help secure Windows Server 2003. Among them, Internet Explorer more effectively stops downloads of spurious files and prevents Web pages from accessing cached objects.
Avoid potentially unsafe e-mail.
Windows Server 2003 SP1 includes additional refinements to protect the network. With Outlook Express you can now open mail in plain-text mode, preventing HTML messages from running malicious code. Outlook Express prevents e-mail from downloading external content, stopping a means by which spam senders can validate your e-mail address. Outlook Express also checks e-mail attachments with Attachment Manager, eliminating the need for your own custom code to do so.
Reduce your servers attack surface.
Help protect newly installed servers.
In today's security environment there is a continual search for new and potentially exploitable system vulnerabilities. Post-Setup Security Updates (PSSU), another new feature of Windows Server 2003 SP1, blocks all incoming traffic to newly installed servers until the latest patches to Windows Server 2003 are downloaded and applied. PSSU also guides configuration of Automatic Updates when you first log on.
Get firewall protection from startup to shutdown.
Windows Firewall, the same core firewall technology in Windows XP Service Pack 2, is built into Windows Server 2003 SP1. Windows Firewall in Windows Server 2003 SP1 allows granular control over server and client computers through the use of Group Policy. Moreover, Windows Firewall provides boot-time protection, lowering the risk of attack just after a server is started up and while it is shutting down.
Bolster your defenses with "no execute" hardware support and software.
Data execution prevention (DEP) is a set of hardware and software technologies that performs additional checks on memory to help protect against exploitation of your system by malicious code. Windows Server 2003 SP1 fully utilizes the DEP capabilities built into servers by many manufacturers and further augments those capabilities with DEP software of its own.
Help protect your system services with stronger default settings and reducing privileges.
Services such as remote procedure call (RPC) and DCOM are integral to Windows Server 2003 and make an attractive target for hackers. By requiring greater authentication for calls of these services, Windows Server 2003 Service Pack 1 helps establish a minimum threshold of security for all applications that use these services, even if they possess little or no inherent security.
Isolate out-of-date virtual private network (VPN) assets.
VPN Quarantine automatically provides the means for limiting network access for machines on virtual private networks that are not current with regards to security updates. This prevents you from having to write your own ad hoc scripts to affect this facet of sound network security.
Monitor and audit your Internet Information Services (IIS) configuration settings.
The metabase is the XML-based, hierarchical store of configuration information for Internet Information Services 6.0. The ability to audit this store allows network administrators to see which user accessed the metabase in case it becomes corrupted.
Windows Firewall Policy Management
Windows Server 2003 SP1 includes new Group Policies that help IT Pros centralize client and server firewall management, including application rules, port rules, and firewall logging at the client and server to help improve security in the enterprise while maintaining centralized configuration and deployment.
Help Secure Internet Explorer.
Internet Explorer now contains many enhancements to help secure Windows Server 2003. Among them, Internet Explorer more effectively stops downloads of spurious files and prevents Web pages from accessing cached objects.
Avoid potentially unsafe e-mail.
Windows Server 2003 SP1 includes additional refinements to protect the network. With Outlook Express you can now open mail in plain-text mode, preventing HTML messages from running malicious code. Outlook Express prevents e-mail from downloading external content, stopping a means by which spam senders can validate your e-mail address. Outlook Express also checks e-mail attachments with Attachment Manager, eliminating the need for your own custom code to do so.
更多内容请看Windows操作系统安装、系统安装手册、Windows权限设置专题,或进入讨论组讨论。
相关图文阅读
频道图文推荐
健 康 咨 询
时 尚 咨 询
相关专题
- Windows操作系统安装 (15501篇文章)
- 系统安装手册 (20723篇文章)
- Windows权限设置 (10139篇文章)
- Windows server 2003企业应用 (246篇文章)
- Windows操作系统安全集 (18516篇文章)
- 数据库安装与卸载 (10507篇文章)
- Windows频道 (9714篇文章)
- Win2003系统安装 (144篇文章)
- Windows server 2003安装&升级 (95篇文章)
- Windows2003安装和配置 (24篇文章)
- 提高运行速度 教你一步一步优化XP系统 (433次浏览)
- 搞定Windows XP经典故障之安装启动故障 (142次浏览)
- 搞定Windows XP经典故障之网络故障篇 (124次浏览)
- Windows XP 客户端的软件限制策略二 (116次浏览)
- Windows XP 客户端的软件限制策略三 (79次浏览)
- 你了解XP SP2中的四大终极武器吗? (77次浏览)
- 搞定Windows XP经典故障之桌面故障篇 (77次浏览)
- 修改boot.ini文件 让启动菜单“彩”起来 (57次浏览)
- Windows XP操作系统常见故障诊断思路 (57次浏览)
- windows XP 最常用技巧 (53次浏览)
