Chapter 11
Public Application Server Security
About This Chapter
Protecting servers that provide public services might be the most daunting security problem you face. Web and e-mail servers must be open to access from the Internet while still protected from anonymous attack. To accomplish this goal, you use a firewall that, when properly configured, protects your private network at the same time as it provides access to your public servers. Using a firewall is the most important step you can take to keep your network secure.
Using a firewall to protect your network is a major component of security that you must be familiar with to pass the exam. Make sure you understand the security perimeter architecture and how to protect servers with ISA Server.
This chapter details the types of attacks you can expect to encounter and the methods for defending against them. You'll create a secure Internet services infrastructure by using firewalls, properly securing e-mail servers, and protecting the database servers that frequently provide back-end data for Web servers.
Securing Web servers is discussed in Chapter 12, "Web Service Security." Research methods for protecting your network in Chapter 13, "Intrusion Detection and Event Monitoring."
Before You Begin
To complete the lessons in this chapter, you will need
A domain controller for the domain.fabrikam.com domain
A member server in the domain
A workstation in the domain