fast user switching (FUS), 139
domain-joined situations and, 159
feature delegation, 316-318, 342
Federal Information Processing Standard (FIPS) 140-2, 26
file associations, 104
HKCR and, 103, 104
HKCU and, 104
HKLM and, 104
file attachments, malicious. See malicious file attachments
File download (setting), 269, 279
files. See also specific files
IE file types (by file extension), 269
malware location in, 66
protection, 23
as securable objects, 172
UAC and access of, 153-154
virtualization, 25, 145
filtered tokens, 132
built-in Administrator account and, 150
filtering platform. See Windows Filtering Program
finger.exe, 216
fingerprint scanners, 14, 15
FIPS 140-2. See Federal Information Processing Standard 140-2
Firefox. See Mozilla Firefox
firewall context, 424
Firewall, Windows, 230, 403-444
with Advanced Security MMC snap-in, 422, 443
API, 424-425
best practices, 444
boot time filtering, 409-410
control panel, 419-421
Group Policy and, 422-423
IPsec and, 407, 424
IPv6 and, 36, 406-407, 412
management, 417-443
mixed/down-level environment, 438-442
management interfaces, 419-429
Netsh and, 423-424
new features/improvements, 36, 405-417
OneCare and, 238
outbound filtering and, 412-417, 525
security of, 413-417
profiles, 417-419
per-interface, 444
RPC and, 442-443
rules, 426-429
authentication exemption, 428
connection security, 427-428
directional, 427
precedence order, 428-429
server to server, 428
tunnel, 428
types, 426-429
when to use, 428
scenarios, 429-438
allowing management traffic via VPN, 437-438
blocking outbound SMB in public profile, 436-437
restricting access based on end-point, 429-436
Security Center and, 421
service hardening and, 411
stealth feature, 408
strict source mapping and, 410-411
firewalls, 404
need for, 404
policies, 207
restricting services with, 207
profiles, 417-419
Windows XP, 403, 404
folder(s). See also specific folders
low integrity, 250-251
malware locations in, 67
protection, 23
Font download (setting), 270, 279
Forefront Client Security, Microsoft, 239
FORMS authentication, 322, 324
other authentication methods v., 325
forwarded events, 29, 30
Full Volume Encryption Key (FVEK), 77
FUS. See fast user switching
fuzzers, 4
FVEK. See Full Volume Encryption Key