Professional Documents
Culture Documents
Module Objectives
~ ~ ~
~ ~ ~ ~ ~
Configuring UNIX Services Operating System Security Measures: Linux Network File System File System Management: Features Security Configuration and Analysis Tool
EC-Council
Module Flow
Windows Security Windows Registry Configuring Windows Services
Group Policy
Active Directory
Windows Security
~
User working on the computer with either User account or Security group is accountable to the work done in that domain
EC-Council
Windows Registry
~ ~ ~ ~ ~ ~
A mini-database containing a variety of configuration information Stores the path specifics of the data files Permits administrators to control access to the database Registry data is stored in binary files Regedit.exe or Regedt32.exe enables editing the registry Navigation area of registry editor displays folders
EC-Council
Services are processes that are initiated automatically and are executed under a system Services applet permits administrators to view, start, stop and restart a variety of system services Enables administrators to exercise privileges with respect to initiating services Examining Windows services minimizes the software running on the current operating system
~ ~
EC-Council
Process
~ ~ ~ ~
Process: Program in execution LSA enables access to secured objects in windows OS Registry is the database which contains set up information SIDs are specific serial numbers assigned to users, computers, user accounts for the purpose of identification New Technology LAN Manager (NTLM): Protocol to store user accounts in Security Accounts Manager
EC-Council
Resource Access
~
Access to resources is provided using: Windows Explorer Directory Services Agent (DSA)
Directory Services Agent (DSA): Checks users with respect to Local Security Authority Active Directory
Mandatory Logons: Login to specific system is possible only through that account
EC-Council
EC-Council