Don't forget to check out resources from the manufacturer itself. Microsoft has a free tool called the Microsoft Security Compliance Manager (http://technet.microsoft.com/en-us/library/cc677002.aspx). You can import baselines for several of its products and OSs, including Windows 7. The Win 7 baseline includes a "Windows 7 Security Guide Doc" and several different group policy templates covering different scenarios. This is a great tool for getting started on building a group policy baseline. Though not perfect, to be fair, Microsoft has put a lot of effort the past several years into better securing their products. Sometimes I think they do not get the credit they deserve on that front.
Jody From: [email protected] [mailto:[email protected]] On Behalf Of Juan Cortes Sent: Tuesday, May 11, 2010 2:08 PM To: PaulDotCom Security Weekly Mailing List Subject: Re: [Pauldotcom] windows7 hardening checklist This awsome i was bout ask the same question. Gotta love the mailing list. On May 11, 2010 12:53 PM, "Tidball, Christopher" <[email protected]> wrote: You might want to check out the Center for Internet Security (http://cisecurity.org/en-us/?). They provide hardening benchmarks for many OS including Windows 7. Chris _____ From: [email protected] [mailto:[email protected]] On Behalf Of Andrew Anderson Sent: Tuesday, May 11, 2010 11:01 AM To: PaulDotCom Security Weekly Mailing List Subject: [Pauldotcom] windows7 hardening checklist Anyone have suggestions re: checklist, framework, or other gotchas when it comes to hardening Window... _____ This communication is the property of Qwest and may contain confidential or privileged information. Unauthorized use of this communication is strictly prohibited and may be unlawful. If you have received this communication in error, please immediately notify the sender by reply e-mail and destroy all copies of the communication and any attachments. _______________________________________________ Pauldotcom mailing list [email protected] http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
_______________________________________________ Pauldotcom mailing list [email protected] http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
