反击阻挡DDoS攻击-Microsoft.ppt

使用安全可靠无线接入 公司网络使用周界通信防火墙 使用行之有效的网络入侵检测系统 确保远程用户连接 工作环境拒绝病毒 第一层防御: 保护网络所处的周界 控制用户应用程序 消除薄弱密码 消除域服务共享帐户 使用安全的域控制器 强制使用反病毒软件和更新软件补丁 对客户端和服务器使用强势操作系统 第二层防御: 加强网络自身安全保护 结论 预防事故的发生成本比事故导致的损失要小的多 企业公司应该采用安全审计, 系统检查,补救并且教育用户如何保护自己的系统 采用详尽的,经过反复演练和灵活性的事故响应计划可以减小攻击对系统带来的不利影响. 更多信息 更多关于微软IT部署和最佳实践可以参考: 微软 TechNet /technet/itshowcase 微软案例学习资源/resources/casestudies This document is provided for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS DOCUMENT. ? 2004 Microsoft Corporation. All rights reserved. This presentation is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, IN THIS SUMMARY. Microsoft, Microsoft Press, Visual Studio, Visual SourceSafe, Windows and Windows NT are either registered trademarks or trademarks of Microsoft Corporation in the United States and/or other countries. The names of actual companies and products mentioned herein may be the trademarks of their respective owners. * Abstract This 24-slide presentation, published January 2003, details the Microsoft IT group preventative approach to managing computer vulnerabilities. Designed to reduce the occurrences and severity of attacks, Microsoft IT’s security methodology includes the development of processes to reduce open ports and vulnerable systems and services, manage user permissions, regularly assess risks, and regularly monitor compliance with security guidelines. Executive Summary Security threats to computer networks often come from attackers who take advantage of security flaws, such as well-known configuration errors and published product vulnerabilities. Just like any enterprise, Microsoft is the target of computer attacks. These attacks are often discussed in newsgroups or chat rooms, and the attack tools are frequently published on the Internet. At one time, Microsoft used a reactive approach: If an exploit occurred, resources were deployed and narrowly focused on that exploit only. The process involved deploying