How do you guys keep your win2000 boxes secure
I have signed up on microsoft.com mailing list and get updates about vulnerabilities, But have done the same just recently,

How do i know if the server is protected against old vulnerabilities,
SP2 is installed obviously,

Is there some tool which can check if all patches are applied

Regards,

There are a lot of thing you can do to lock down your server (and you need to). The best is to read the IIS security checklist and set the policys. There are a few other things like make sure you have all un-needed services turned off, disable NetBIOS over TCP/IP, etc. There are also a few tools available at MS site: http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/tools/tools.asp like IIS lockdown and others.

Hope that helps!

Hi Manish,
Win and secure ...... :)
Anyway goto http://www.astalavista.box.sk
Here there are many security sites and hacks mentioned about various OS's
Reading and understanding these really helps.... :)
Also there are many links to sites such as
http://www.ntsecurity.net/
which may be useful...... :)

I wish you all the best in this new venture of securing WIn...

Have a great day :)

Regards
amar

You can just wait, and a hacker or script kiddie will usually secure it for you. :)

..which you can run on schedule and it will automatically check microsoft's website for the latest patches. Its called hfcheck.wsf . And you can download from MS website.