Please enable JavaScript.
Coggle requires JavaScript to display documents.
Servers & Services Security MGT: Server Technology & Concepts…
Servers & Services Security MGT: Server Technology & Concepts
Server Operating Systems
designed from the ground up
focus is security, stability & collaboration, rather than user interface
provide platforms for multi-user, frequently business-critical, networked applications
provide platforms for multi-user
bundled with common server applications
Web servers
email agents
terminal services
Features
GUI not available or optional
ability to reconfigure & update both hardware & software to some extent without restart
advanced backup facilities to permit regular & frequent online backups of critical data
flexible & advanced networking capablities
tight system security, with advanced user, resource, data & memory protection
Server Services
network service
application that provides data storage, manipulation, presentation, communication or other capability
implemented using a client-server or peer-to-peer architecture
each service provided by a server component & accessed via a network by client components on other devices
client & server components can both be run on the same machine
Types of Servers
Application
dedicated to running certain software applications
Catalog
central search point for information across a distributed network
Communications
carrier-grade computing platform for communications networks
Database
provides database services to other computer programs or computers
File
provides remote access to files
Mail
handles transport of & access to email
Name/DNS
Print
provides printer services
Proxy
acts as intermediary for requests from clients seeking resources from other servers
Web
server that HTTP clients connect to in order to send commands & receive responses along with data contents
Game
server that video game clients connect to in order to play online together
How They Work
require a service, application or process running
require an address to locate the server running the service
require a port number that the service is listening request from
require a protocol for communicating & exchanging information
Security Vulnerability
application vulnerability
common ports
IP address
protocol
Host-Based Defences Against Attacks
Host-Based firewall
change ports
application control
encryption
logs
Intro to Active Directory
Definition
supports single sign-on environment via UmassD Logon
improved desktop security
improved management & administration of workstations
consolidation of servers
improved timeframe for updates, patches & installation of new versions of software
quicker support call resolution via Remote Desktop Management
Benefits
access to shared central network disk storage
ability to share data within departments via departmental shares
access to personal storage on a centralised secure server
easier, searchable access to network services
centralised support for servers
remote software installation allowing for more timely software upgrades, patches & updates
User Authentication & Security
password requirements
minimum 10 char
one uppercase letter
one lowercase letter
one number
password expired every 180 days
NYP Logon services
computer logon
shared network storage
student portal
email
statement of absence
results