some old MS white papers

I found these while doing some housekeeping, some of the first white papers I ever wrote while working for Unisys. They detail how to securely install and configure Windows and IIS as out of the box both were notoriously insecure. While I didn’t actually finish these documents until 2003, the inspiration to write them came from the Nimda and Code Red attacks in late 2001 (the Nimda attack actually forced Unisys IT to shutdown ALL of their email servers for a few days so they could clean up the mess). Luckily most of these steps are no longer needed with the changes MS has made to Windows over the years, once they decided to get serious about security.

Quickshot-Securing IIS 5

Quickshot-Securing Windows 2000

Leave a Reply