Server Side Security Unit 1 Individual ProjectRunning head: SERVER SIDE SECURITY UNIT 1 IP

Server Side Security Unit 1 Individual Project
American Intercontinental University
IT465-1102B-02: Intrusion Detection and Prevention for Windows Security
June 12, 2011

Basic Server Security The four basic necessities of server security include antivirus, strong passwords, firewalls, and critical updates. Antivirus software prevents infiltration and/or stops an attack completely. It will check a set of coding against a database of virus codes. It is important to use a well stocked virus database source. Strong passwords are typically ten to fourteen characters in length, a mix of numbers, symbols, upper, and lower cases lettering. Patterns, names, and identifiable information should be avoided (HostingHelpers, 2008). Critical updates include receiving security updates from an online source. These are done in forms of patches and/or updates that will correct coding, fix exploitable code, and a wealth of other things. These are vital to working with several applications. Firewalls are able to block unwanted traffic. These can help with security and keep random connection attempts form using up server and system resources (HostingHelpers, 2008).
Firewalls
Firewalls are very resourceful. Depending on the size of the company and users, choosing the correct firewall can be critical. There are many firewalls out there and companies that produce them both freely and paid. You can utilize small office/home office (SOHO) firewalls, single machine firewalls, medium–sized network firewalls, or Enterprise firewalls (Easttom, 2006). Medium-sized companies are usually 25 to several hundreds of users. All of these users are on a LAN in a single location. For this type of company you can utilize the Check Point Firewall-1 or Cisco PIX 515E. For Enterprise you can use the Fortigate 3600 (Easttom, 2006).
Advantages:
Firewall-1: * Works with multiple OS’ * Combination of application gateway and SPI or Stateful Packet Inspection * Common DoS techniques are protected against
Cisco PIX 515E: * SPI filtering * Robust built-in encryption * Product training is readily available * NAT is included * Multimedia security options and VoIP are included
Fortigate 3600: * User authentication and SPI is offered * Built-in virus scanning, IDS, and encryption * Extensive content filtering * 24-hour update service
Disadvantages:
Firewall-1: * Cost * Dependent upon underlying operating system security * Requires moderate skill to configure and administer
Cisco PIX 515E: * Cost * Moderate administrative and configuring skill required
Fortigate 3600: * Trained personnel are required * Service contracts range in the several thousand’s as well as the firewall costing up to and surpassing $20,000 depending on model (Easttom, 2006).
Windows Server Security WIN Server Security includes Windows Monitoring and Windows Application Monitoring. The areas of interest are: * Optimal resource usage and servers are up and running * Failure bound resources recognition capabilities * Capacity planning and inventory management * Windows Monitoring and a robust set of WIN applications (ManageEngine, 2011). Some of the process includes CPU utilization, Disk utilization, Memory utilization, Process Monitoring, Windows Service Monitoring, Network Interface Monitoring, Windows Event Log Monitoring, Windows Performance Counters, and more. This will help to see if the CPU’s are running to potential and capacity, notification of low memory, disk space notification, process failure notification, critical process monitoring, do this in WMI mode, health and status of network interface monitoring, monitor events generated, and performance counter values (ManageEngine, 2011).

References Easttom, C. (2006). Network defense and countermeasures. Upper Saddle River, NJ. Pearson Prentice-Hall. HostingHelpers. (2008). The basics of server security. Retrieved June 12, 2011, from http://www.hostinghelpers.com/articles/the-basics-of-server-security/ ManageEngine. (2011). Applications manager. Retrieved June 12, 2011, from http://www.manageengine.com/products/applications_manager/windows-monitoring.html