|
|
马上注册,结交更多好友,享用更多功能,让你轻松玩转社区。
您需要 登录 才可以下载或查看,没有帐号?立即注册
x
无法实现跨操作系统的应用。当然这也是微软的理由之一,只有这样才能发挥ASP最佳的能力。可是我却认为正是Windows限制了ASP,ASP的概念本就是为一个能让系统运行于一个大的多样化环境而设计的;server|window|server|windowTop10ReasonstoInstallWindowsServer2003SP1
Reduceyourserversattacksurface.
SecurityConfigurationWizard(SCW),oneofthenewfeaturesaddedtoWindowsServer2003inServicePack1(SP1),usesanintuitive,role-basedprocesstoguideadministratorsthroughreducingtheattacksurface.WithSCWyoucandisableunusedserviceseasilyandquickly,blockunnecessaryports,modifyregistryvalues,andconfigureauditsettings.
Helpprotectnewlyinstalledservers.
Intodayssecurityenvironmentthereisacontinualsearchfornewandpotentiallyexploitablesystemvulnerabilities.Post-SetupSecurityUpdates(PSSU),anothernewfeatureofWindowsServer2003SP1,blocksallincomingtraffictonewlyinstalledserversuntilthelatestpatchestoWindowsServer2003aredownloadedandapplied.PSSUalsoguidesconfigurationofAutomaticUpdateswhenyoufirstlogon.
Getfirewallprotectionfromstartuptoshutdown.
WindowsFirewall,thesamecorefirewalltechnologyinWindowsXPServicePack2,isbuiltintoWindowsServer2003SP1.WindowsFirewallinWindowsServer2003SP1allowsgranularcontroloverserverandclientcomputersthroughtheuseofGroupPolicy.Moreover,WindowsFirewallprovidesboot-timeprotection,loweringtheriskofattackjustafteraserverisstartedupandwhileitisshuttingdown.
Bolsteryourdefenseswith"noexecute"hardwaresupportandsoftware.
Dataexecutionprevention(DEP)isasetofhardwareandsoftwaretechnologiesthatperformsadditionalchecksonmemorytohelpprotectagainstexploitationofyoursystembymaliciouscode.WindowsServer2003SP1fullyutilizestheDEPcapabilitiesbuiltintoserversbymanymanufacturersandfurtheraugmentsthosecapabilitieswithDEPsoftwareofitsown.
Helpprotectyoursystemserviceswithstrongerdefaultsettingsandreducingprivileges.
Servicessuchasremoteprocedurecall(RPC)andDCOMareintegraltoWindowsServer2003andmakeanattractivetargetforhackers.Byrequiringgreaterauthenticationforcallsoftheseservices,WindowsServer2003ServicePack1helpsestablishaminimumthresholdofsecurityforallapplicationsthatusetheseservices,eveniftheypossesslittleornoinherentsecurity.
Isolateout-of-datevirtualprivatenetwork(VPN)assets.
VPNQuarantineautomaticallyprovidesthemeansforlimitingnetworkaccessformachinesonvirtualprivatenetworksthatarenotcurrentwithregardstosecurityupdates.Thispreventsyoufromhavingtowriteyourownadhocscriptstoaffectthisfacetofsoundnetworksecurity.
MonitorandaudityourInternetInformationServices(IIS)configurationsettings.
ThemetabaseistheXML-based,hierarchicalstoreofconfigurationinformationforInternetInformationServices6.0.Theabilitytoauditthisstoreallowsnetworkadministratorstoseewhichuseraccessedthemetabaseincaseitbecomescorrupted.
WindowsFirewallPolicyManagement
WindowsServer2003SP1includesnewGroupPoliciesthathelpITProscentralizeclientandserverfirewallmanagement,includingapplicationrules,portrules,andfirewallloggingattheclientandservertohelpimprovesecurityintheenterprisewhilemaintainingcentralizedconfigurationanddeployment.
HelpSecureInternetExplorer.
InternetExplorernowcontainsmanyenhancementstohelpsecureWindowsServer2003.Amongthem,InternetExplorermoreeffectivelystopsdownloadsofspuriousfilesandpreventsWebpagesfromaccessingcachedobjects.
Avoidpotentiallyunsafee-mail.
WindowsServer2003SP1includesadditionalrefinementstoprotectthenetwork.WithOutlookExpressyoucannowopenmailinplain-textmode,preventingHTMLmessagesfromrunningmaliciouscode.OutlookExpresspreventse-mailfromdownloadingexternalcontent,stoppingameansbywhichspamsenderscanvalidateyoure-mailaddress.OutlookExpressalsocheckse-mailattachmentswithAttachmentManager,eliminatingtheneedforyourowncustomcodetodoso.
</p>asp,你就只能等着微软给你解决,它不乐意你就只好悲催。而且asp跑在windows服务器上,windows服务器跟linux比起来简直弱爆了! |
|
|Archiver|手机版|仓酷云
鄂ICP备14007578号-2
发表于 2015-1-16 23:40:28
收藏
转播
分享
淘帖
顶
踩
提升卡
置顶卡
沉默卡
喧嚣卡
变色卡
千斤顶
照妖镜