Microsoft Baseline Security Analyzer is a tool that can check running Windows NT 4.0, the Windows 2000 and Windows XP computer to find common security configuration errors (Available on the Microsoft website to download). Microsoft Baseline Security Analyzer is a complete system of knowledge, in-depth and detailed grasp of the security vulnerability and the vulnerability of its existence, and knows how to compensate for these security systems security issues in a timely manner to modify the security policy to ensure that the system is always in the best security status.
Newt is a vulnerability scanner powerful and comprehensive platform for Microsoft Windows. It performs the high speed control of over 4,000, current vulnerability that encompasses a wide range of analysis options. NEWT Pro Free, brother of the more commercial, pork, including, you can create a variety of security controls.
Discussion
Microsoft Baseline Security Analyzer
Baseline Security Analyzer can run Windows NT 4.0, Windows 2000, Windows XP Professional Edition and Windows XP Home Edition machine scanning. It is able to check:
Windows operating system security vulnerabilities
For running a secure system, a particularly important factor is to keep using the latest security patches. Microsoft regularly release security patches, then how do you know which patches have been applied to your system? Benchmark security scanner that can do that, more importantly, it can help you analyze what has not applied. The inspection results in the form of a safety report available to users with instructions on repair any problems found in the report.
Baseline Security Analyzer to check the contents of the Windows operating system security are as follows:
? Check will identify and list the user account belongs to the Local Administrators group;
? Check to determine whether the audit is enabled on the scanned computer;
? Check to determine whether the "auto login" feature is enabled on the scanned computer;
? Check for unnecessary services;
? Whether the check will identify the computer being scanned for a domain controller;
? Check each hard disk is a file system, to ensure that it is a NTFS file system;
? Check to determine that the built-in Guest account is enabled on the scanned computer;
? Check will identify the use of blank or simple passwords for all local user accounts;
? Check lists a local user on the scanned computer used and recommended by IE zone security settings;
? Check to determine which operating system running on the computer being scanned;
? Check to determine whether there is a local user account is set to never expire the password;
? The check will determine to be scanned on the computer whether to use the Restrict Anonymous registry to restrict anonymous connections service packs and hotfixes.
Analysis of the IIS security
Baseline Security Analyzer will scan the security issues, such as machines that appear on the sample application and some of the virtual directory in IIS 4.0 and 5.0. The tool will also check on the machine running the IIS Lockdown tool, the tool can help administrators to configure and to protect the safety of their IIS ...