版权说明:本文档由用户提供并上传,收益归属内容提供方,若内容存在侵权,请进行举报或认领
文档简介
第一篇区块篇IntegratedphoneandPDAPrimarilydataviewingInteroperabilitywithOutlookandExchange.NETCompactFrameworkASP.NETmobilecontrolsMobileDeviceSolutionsComplexdocumentauthoring,editingandreadingKeyboardcentricatthedeskKeyboardandmouseinputmethodsFull.NETframeworkavailableCentrinoSolutionsWindowsMobileWindowsXPComplexdocumentauthoring,editingandactivereadingNotetakingandinkannotatingKeyboardcentricatthedesk,penandkeyboardawayfromthedeskKeyboard,mousepluspen,ink,andspeechinputmethodsFull.NETframeworkpreinstalledPen,ink,handwritingandspeechrecognitionAPI’sCentrinoSolutionsViewandsomedataentryIntegratedPDAwithphoneInteroperabilitywithOffice,ExchangeandSQLServer.NETCompactFrameworkASP.NETmobilecontrolsIntelXscaleSolutionsWindows®CEOne-waynetworkInformationconsumptionSmartPersonalObjectsSmartphonePocketPCandPocketPCPhoneNotebookPCTabletPCNetworkDefenseHealthcheckupITchecks“health”ofclientNetworkAccessControlClientswhopassgetnetworkaccessClientswhodonotpassarefixedorblocked(aka“quarantined”)HealthmaintenanceQuarantinedclientscanbegivenaccesstoresourcestogethealthyFromHome
(VPN,Dialup)ReturningLaptopsConsultants
GuestsUnhealthy
DesktopsMicrosoftBusinessSolutionsERPPositioningProjectManagementandAccountingERPPrimarilyinUSandLatinAmericaMid-marketERPTypicallycustomizedforuniquebusinessprocessesGlobalERPMultinationalsAdvancedmanufacturersMid-marketERPRichout-of-the-boxfunctionalityGuidingPrinciplesProductiveIntegratedExtensibleCapableShortlearningcurveMinimaladministrativeoverheadToolsintegratedtightlyAutomatescommontasksCustomizableforyourprocessIntegrateswith3rdpartytoolsRemotelyaccessibleRobust,secure,scalableStagingArchitectureDataentryTestApplicationCenterCommerceWebCommerceCommerceDataCommerceWebCommerceCommerceDataApplicationCenterApplicationCenterDataACSClusterACSClusterClustercontrollerClustercontrollerDataLiveCommunicationsClientRoadmapLC1.2ClientPlatformMultipartyIMP2PVoice
andVideoMPOPGroupsRoamingSIPsupportGPOpolicymanagementLC1.5ClientPlatformRollupofQFEsMPOPAdditionsFederation/ArchivingNotificationHAAdditionsLC2.0ClientPlatformNextgenerationofRTCexperiencesMorecoming!20232H04LonghornEnterpriseDeploymentUpdateInternetFirewallFirewallFirewallRuntimeServersCorporateLAN–InternalServersCrawl/SearchLoadBalancedWebInfrastructureServersDevelopmentServersTestServersBusinessDataServersBusinessUsersDatabaseandStagingServersStagingServersDatabaseServersOfflineServersIndicatesStagedDataFlowCommunicateandcollaborateinamoresecuremanner
withoutsacrificinginformationworkerproductivityWindowsXPSP2
Blockvirusormaliciouscodeatthe“pointofentry”
AtRiskTheSoftUnderbellySecurityIssuesToday1Source:ForresterResearch2Source:InformationWeek,26November20233Source:Netcraftsummary4Source:CERT,20235Source:CSI/FBIComputerCrimeandSecuritySurvey6Source:ComputerSecurityInstitute(CSI)ComputerCrimeandSecuritySurvey20237Source:CERT,20238Source:GartnerGroup14BdevicesontheInternetby2023135Mremoteusersby2023265%increaseindynamicWebsites3From2023to2023reportedincidentsrosefrom21,756to82,0944Nearly80percentof445respondentssurveyedsaidtheInternethasbecomeafrequentpointofattack,upfrom57percentjustfouryearsago5
90%detectedsecuritybreaches685%detectedcomputerviruses695%ofallbreachesavoidablewithanalternativeconfiguration7Approximately70percentofallWebattacksoccurattheapplicationlayer8ApplicationLayerAttacksIdentityTheftWebSiteDefacementUnauthorizedAccessModificationofData,LogsandRecordsTheftofProprietaryInformationServiceDisruptionImplicationsCompliance:SarbanesOxleyGrammLeachBlilelyUSPatriotActHIPAA ThePrivacyAct(CA)Basel2(EU)DataProtectionAct(EU)LitigationFileSharingPiracyHRIssuesShareholderSuitsCustomerImpactTypesOfSRPRulesPathRuleComparespathoffilebeingruntoanallowedpathlistUsewhenyouhaveafolderwithmanyfilesforthesameapplicationEssentialinwhenSRPsarestrictHashRuleComparestheMD5orSHA1hashofafiletotheoneattemptedtoberunUsewhenyouwanttoallow/prohibitacertainversionofafilefrombeingrunCertificateRuleChecksfordigitalsignatureonapplication(i.e.Authenticode)Usewhenyouwanttorestrictbothwin32applicationsandActiveXcontentInternetZoneRuleControlshowInternetZonescanbeaccessedUsewheninhighsecurityenvironmentstocontrolaccesstowebapplicationsSQLServer2023ThemesSupportability&QualityEnterpriseEnhancementsUnified&FlexibleAdministrationPatchSolutionsPrevention,Readiness,RecoveryEaseofusePatchInstallsPatchinintegratedstepIntegratedDatabaseServicesandBusinessIntelligenceFlexibleinstallmanagementAddvaluetoone-stepFailoverClusteringExpandedscriptingsupportTraditionalFirewallsWideopentoadvancedattacksPerformanceversus
securitytradeoffLimitedcapacityforgrowthHardtomanageCodeRed,NimdaSSL-basedattacksSecurityiscomplexITisalreadyoverloadedBandwidthtooexpensiveToomanymovingpartsNoteasilyupgradeableDon’tscalewithbusinessChoosingtheRightTypeofAssessment
VulnerabilityScanningFocusesonknownweaknessesOfthethree,requirestheleastexpertiseGenerallyeasytoautomatePenetrationTestingFocusesonknownandunknownweaknessesRequiresadvancedtechnicalexpertiseCarriestremendouslegalburdenincertaincountries/organizationsITSecurityAuditsFocusesonsecuritypoliciesandproceduresOfthethree,requiresthemostexpertiseWhendonerightisthemosteffectivetypeofassessmentPerimeterSecurityEvolutionWideopentoadvancedattacksApplication-levelprotectionPerformanceversus
securitytradeoffSecurityandperformanceLimitedcapacityforgrowthExtensibilityandscalabilityHardtomanageEasiertouseThe
advancedapplicationlayerfirewall,VPNandWebcache
solutionthatenablescustomerstomaximizeITinvestmentsbyimprovingnetworksecurityandperformanceAdvancedprotectionApplicationlayersecuritydesignedtoprotectMicrosoftapplicationsFast,secureaccessEmpowersyoutoconnectuserstorelevantinformationonyour
networkinacostefficientmannerEaseofuseEfficientlydeploy,manage,andenablenewusagescenariosIntroducing:ISAServer2023Fast,secureaccessEmpowersyoutoconnectuserstorelevantinfo.onyournetworkISAServer2023NewFeatures
ContinuedcommitmenttointegrationEnhancedarchitecture
HighspeeddatatransportUtilizeslatestWindowsandPChardwareSSLbridgingunloadsdownstreamserversWebcache
UpdatedpolicyrulesServecontentlocallyPre-fetchcontentduringlowactivityperiodsInternetaccesscontrol
User-andgroup-basedWebusagepolicyExtensiblebythirdpartiesComprehensiveauthentication
NewsupportforRADIUSandRSASecurIDUser-&group-basedaccesspolicyThirdpartyextensibilitySystemServiceAccountsLocalServiceandNetworkServiceNopasswordtomanageRunswithonlyslightlymorepermissionsthanAuthenticatedUserLocalServicecannotauthenticateacrossthenetwork,NetworkServiceauthenticatesasthecomputeraccountLocalSystemNopasswordtomanageBypassessecuritychecksUserAccountsRunwithlessprivilegethanLocalSystemStorespasswordasanLSAsecretCanbecomplextoconfigureWhat’sNewWithIPSec?ManagementIPSecurityMonitorCommand-linemanagementwithNetshLogicaladdressesforlocalIPconfigurationSecurityStrongercryptographicmasterkey(Diffie-Hellman)ComputerstartupsecurityPersistentpolicyforenhancedsecurityAbilitytoexcludethenameoftheCAfromcertificaterequestsBetterdefaultexemptionhandlingInteroperabilityIPSecfunctionalityovernetworkaddresstranslation(NAT)ImprovedIPSecintegrationwithNetworkLoadBalancingISAServer2023NewFeatures
NewmanagementtoolsanduserinterfaceMulti-networkarchitectureUnlimitednetworkdefinitionsandtypesFirewallpolicyappliedtoalltrafficPernetworkroutingrelationshipsNetworktemplatesandwizardsWizardautomatesnwkroutingrelationshipsSupports5commonnetworktopologiesEasilycustomizedforsophisticatedscenariosVisualpolicyeditorUnifiedfirewall/VPNpolicyw/onerule-baseDrag/dropeditingw/scenario-drivenwizardsXML-basedconfigurationimport-exportEnhancedtrouble-shootingAllnewmonitoringdashboardReal-timelogviewerContentsensitivetaskpanesEaseofUseEfficientlydeploy,manage,andenablenewusagescenariosHowToUseWindowsUpdateToconfigureAutomaticUpdates:SelectKeepmycomputeruptodateOpentheSystemapplicationinControlPanel1OntheAutomaticUpdatestab,selectthe
optionyouwant32OfficeUpdateBenefitsLimitationSinglelocationforofficepatchesandupdatesEasytouseCanbeconfiguredtoupdateconsumeror
enterprisesystemsDoesnotsupportAutomaticUpdates;updatingmustbeinitiatedmanuallyOfficeUpdateWebsite:
http://HowToUseOfficeUpdate1ClickCheckforUpdates2InstalltheOfficeUpdateInstallationEngine
(ifnotalreadyinstalled)3Selecttheupdatesyouwanttoinstall4ClickStartInstallation5HowToUseSUSOntheSUSserverConfiguretheSUSserverat
http://<servername>/SUSAdminOneachSUSclientConfigureAutomaticUpdatesontheclienttousetheSUSserverUseGroupPolicy,manuallyconfigureeachclient,or
usescriptsSettheSUSserversynchronizationscheduleReview,test,andapproveupdates123HowToUseMBSADownloadandinstallMBSA(onceonly)1LaunchMBSA2Selectthecomputer(s)toscan3Selectrelevantoptions4ClickStartscan5ViewtheSecurityReport6SoftwareUpdateServiceDeploymentBestPractices(1)RevieweachsecuritypatchDownloadandinstallthepatchTesteachsecuritypatchbeforedeploymentConfigureatestlabUseatestSUSserverConsiderusingVirtualPCsinthetestlabUseastandardacceptancetestingprocedureSoftwareUpdateServiceDeploymentBestPractices(2)CompletethedeploymentPilotthedeploymentConfigureachildSUSservertoapproveupdatesConfigureaGPOsothatthepatchisdownloadedfromthepilotSUSserveronlybyspecifiedworkstationsIfthepilotfails,removeapprovalfromtheSUSserverandmanuallyuninstallthepatchHowToUseSMSToDeployPatchesOpentheSMSAdministratorConsole1Right-clickAllWindowsXPComputers,andthenselectAllTasks>DistributeSoftwareUpdates3Usethewizardtocreateanewpackageandprogram4Browsetothepatchtobedeployed5Configureoptionsforhowandwhenthepatchwillbedeployedtoclients6ExpandtheSiteDatabasenode2SMS–MBSAIntegrationMBSAintegrationincludedwithSMS2023andthe
SUSFeaturePackforSMS2.0ScansSMSclientsformissingsecurityupdatesusingmbsacli.exe/hfSMSdirectsclienttorunlocalMBSAscan1SMSserverparsesdatatodeterminewhichcomputersneedwhichsecurityupdates3Administratorpushesmissingupdatesonlytoclientsthatrequirethem4Clientperformsscan,returnsdatatoSMSserver2MBSABenefitsScanssystemsforMissingsecuritypatchesPotentialconfigurationissuesWorkswithabroadrangeof
MicrosoftsoftwareAllowsanadministratortocentrallyscanmultiplecomputerssimultaneously MBSAisafreetool,andcanbe
downloadedfrom
MBSAConsiderationsMBSAreportsimportantvulnerabilitiesPasswordweaknessesGuestaccountnotdisabledAuditingnotconfiguredUnnecessaryservicesinstalledIISvulnerabilitiesIEzonesettingsAutomaticUpdatesconfigurationInternetConnectionFirewallconfigurationMBSA–ScanOptionsMBSAhasthreescanoptionsMBSAgraphicaluserinterface(GUI)MBSAstandardcommand-line
interface(mbsacli.exe)HFNetChkscan(mbsacli.exe/hf)BusinessCaseFor
PatchManagementWhendeterminingthepotentialfinancialimpactofpoorpatchmanagement,considerDowntimeRemediationtimeQuestionabledataintegrityLostcredibilityNegativepublicrelationsLegaldefensesStolenintellectualproperty“WecommendMicrosoftforprovidingenhancedsecurityguidancetoitscustomersaswellasforsolicitinguserinputaspartoftheprocessofproducingthatguidance“ClintKreitnerPresident/CEO“NISTreviewedandprovidedtechnicalcomments&advice,thatwasincorporatedinthisguidance”TimothyGranceManagerSystemsandNetwork
SecurityGroupCommentsSecurelymakee-mailavailabletooutsideemployeesExchangepublishingYouNeedTo…SecurelymakeinternalapplicationsavailableontheInternetWebandServerPublishingEnablepartnerstoaccessrelevantinformationonmynetworkIntegratedS2SVPNandFWSecureandflexibleremoteaccess,whileprotectingmycorporatenetworkIntegratedRRASVPNandFWSecurelyconnectmybranchofficestothecorporateofficeIntegratedFW,VPN,CacheControlInternetAccessandprotectmyclientsfrommaliciousInternettrafficFW,WebProxyEnsurefastaccesstothemostfrequentlyusedwebcontentCachingISADeliversRelationalReportingMultiplefacttablesFullrichnessthedimensions’
attributesTransactionlevelaccessStar,snowflake,3NF…Complexrelationships:Multi-grains,many-to-many,roleplaying,indirect…RecursiveselfjoinsSlowlychangingdimensionsTheUnifiedDimensionalModel–
TheBestOfRelationalAndOLAPOLAPCubesMultidimensionalnavigationHierarchicalpresentationFriendlyentitynamesPowerfulMDXcalculationsCentralKPIframework“Actions”LanguagetranslationsMultipleperspectivesPartitionsAggregationsDistributedsourcesVisualStudioTeamSystemChangeManagementWorkItemTrackingReportingProjectSiteVisualStudio
TeamFoundationIntegrationServicesProjectManagementProcessandArchitectureGuidanceVisualStudioIndustryPartnersDynamicCodeAnalyzerVisualStudio
TeamArchitectStaticCodeAnalyzerCodeProfilerUnitTestingCodeCoverageVisioandUMLModelingTeamFoundationClientVSProClassModelingLoadTestingManualTestingTestCaseManagementApplicationModelingLogicalInfra.ModelingDeploymentModelingVisualStudio
TeamDeveloperVisualStudio
TeamTestApplicationModelingLogicalInfra.ModelingDeploymentModelingClassModelingSQLServerCatalogReportServerXMLWebServiceInterfaceReportProcessingDeliveryDeliveryTargets(E-mail,SharePoint,Custom)RenderingOutputFormats(HTML,Excel,PDF,Custom)DataProcessingDataSources(SQL,OLEDB,XML/A,ODBC,Oracle,Custom)SecuritySecurityServices(NT,Passport,Custom)OfficeCustomApplicationBrowserSQLServer2023ReportingServices
ArchitectureCMProfileRunscustomizable
postconnectscriptScriptrunsRQCnotifier
with“resultsstring”ListenerRQSreceivesNotifier
“resultsstring”Comparesresultsto
possibleresultsRemovestime-outif
responsereceivedbut
clientoutofdateRemovesquarantinefilter
ifclientuptodateQuarantineVSAsTimerlimitstime
windowtoreceivenotifybeforeautodisconnectQ-filtersetstemporaryroutefiltertoquarantineaccessInternetRASClientRRASServerIASServerQuarantineRQC.exeandRQS.exeareintheWindowsServer2023ResourceKitQuarantineArchitectureWhatisVSTeamFoundation?SourceCodeControlWorkItemTrackingBuildAutomationProjectSiteReportingMicrosoftBIProductSuiteAnalysisServicesOLAP&DataMiningDataTransformationServicesSQLServerRelationalEngineReportingServicesManagementToolsDevToolsVisualStudio.NetExcelOWCVisioMapPointDataAnalyzerSharePointPortalServerProjectServerWindowsServerMBSBIApplicationsCurrentArchitectureTCP/IPRTCClientAPIUserAppRTPSIPPINTT.120ServerArchitectureApplicationManagedAPIsApplicationManagedAPIsWinsockStorageADDispatcherDataStoreInterfacesSPLScriptEngineRegistrar/PresenceSIPProxyServerApplicationInteractionApplication
1CRMApplication
2BillingApplication
3LoggingRequestModified
RequestTITLEAvailableTodayMicrosoft®Windows®SecurityResourceKitAssessingNetworkSecurityJune23,2023EAParchitectureTLSGSS_APIKerberosPEAPIKEMD5EAPPPP802.3802.5802.11Anything…methodlayerEAPlayermedialayerMS-CHAPv2TLSSecurIDPartnerSolutionsOfferingsVALUEProposition:
GetmorebusinessvaluefromyourinvestmentinOfficeFinanceSarbanes-OxleyBusinessScorecardExcelAdd-inforSQLServerAnalysisServicesOperationsSixSigmaHRRecruitingSalesProposalsSolutionAcceleratorsMicrosoftProductsOfficeSolutionAcceleratorsVALUEProposition:
GetmorebusinessvaluefromyourinvestmentinOfficeYourPeopleEPMInvolves….YourBusinessProcesses
YourOrganizationYourSoftwareTechnology&ToolsEnterpriseProjectManagementAnorchestrationofyourpeople,processes,organizationwithtechnologyYourBusinessProcesses…GovernancePrioritizationBudgetingHuman
Resources…
etc…InitiativesImplementMicrosoftOfficeProject2023fortheEnterpriseDecisions-CorporateGoalsandObjectivesExecutivesFinanceSalesandMarketingR&DIT/ISYourOrganization…StrategicInitiativesHRDevelopmentProjectsOperationalImprovementsOnAverage45-50%ofallProjectsarelinkedtoStrategicObjectives.RepresentativeRisksAndTacticsTacticalSolutionsEnterpriseRisksEmbodyTrustworthyComputingSecureEnvironmentalRemediationUnpatchedDevicesNetworkSegmentationThroughIPSecUnmanagedDevicesSecureRemoteUserRemoteandMobileUsersTwo-FactorforRemoteAccessandAdministratorsSingle-FactorAuthenticationManagedSourceInitiativesFocusControlsAcrossKeyAssetsRemoteAccessSecurity
ThreatRequirementSolutionMalicious
usersTwofactorauthenticationSmartCards
forRASMalicious
softwareEnforceremotesystemsecurityconfigurationConnectionManager,customscriptsandtoolsprovidedintheWindows2023resourcekitCorporateSecurityGroupOrganizationCorporateSecurityGroupThreat,Risk
Analysis,andPolicyAssessmentand
ComplianceMonitoring,IntrusionDetection,andIncidentResponseSharedServices
OperationsThreatandRisk
AnalysisPolicy
DevelopmentProduct
EvaluationDesign
ReviewStructure
StandardsSecurity
ManagementSecurity
AssessmentComplianceand
RemediationMonitoringand
IntrusionDetectionRapidResponse
andResolution
ForensicsIT
InvestigationsPhysicaland
RemoteAccessCertificate
AdministrationSecurity
ToolsInitiative
ManagementServerFunctionsOperationalInfrastructureServerWorkloadsFocusApplication/WebServerUnixintegrationservicesWorkloadsSolutionsApplicationPlatformInformationWorkerInfrastructureDatabaseHighPerformanceComputingSoftwareDistributionVirtualizationOperationsMgmtTerminalServerEmailCollaborationBranchOfficeMediumBusinessSmallBusinessNetworkingRemoteAccessSecurityIdentityMgmtStorage(file,portal)PrintWhatIsMapPointWebService?Functionalities/APIsMaps,Geocoding,ReverseGeocoding,ProximitySearch,FindAddressetc.DevelopmentToolsVisualStudio.Net,Linux,VisualBasic,Mac,Java,C#…XMLWebService
PointsofInterestDatabaseofmorethan200,000and16millionbusinesslistingsCartographicdataExtensivegeographiccoveragein19countriesinEuropeandNorthAmerica.NoUIconstraints;deviceindependent.Integration
intoabroadrangeof
differentapplications
anddevices.20232023WindowsSmallBusinessServer2023SP1WindowsServer2023for64-BitExtendedSystemsWindowsServer2023ServicePack1(SP1)WindowsXPTabletEdition2023WindowsXPMediaCenterEdition2023WindowsXPServicePack2(SP2)VirtualServer2023AdditionalFeaturePacks(e.g.WindowsUpdateServices)WindowsServer:Codename“Longhorn”Beta1WindowsClient:Codename“Longhorn”Beta1WindowsServer2023Update:Codename“R2”ReleaseRoadmap第二篇表格篇MicrosoftPatchSeverityRatingsSecurityBulletinList:
RatingDefinitionCriticalExploitationcouldallowthepropagationofanInternetwormImportantExploitationcouldresultincompromiseofuserdataortheavailabilityofprocessingresourcesModerateExploitationisserious,butismitigatedtoasignificantdegreebydefaultconfiguration,auditing,needforuseraction,ordifficultyofexploitationLowExploitationisextremelydifficultorimpactisminimalPatchingTimeFramesSeverityratingRecommendedpatchingtimeframeRecommended
maximumpatchingtimeframeCriticalWithin24hoursWithintwoweeksImportantWithinonemonthWithintwomonthsModerateDependingonexpectedavailability,waitfornextservicepackorpatchrollupthatincludesthepatch,ordeploythepatchwithinfourmonthsDeploythepatchwithinsixmonthsLowDependingonexpectedavailability,waitfornextservicepackorpatchrollupthatincludesthepatch,ordeploythepatchwithinoneyearDeploythepatchwithinoneyear,orchoosenottodeployatallImprovingThePatchingExperienceYourneedMicrosoft’sresponseReducepatchfrequencyReducedfrequencyofnon-emergencypatchreleasesfromonceperweektooncepermonthReducepatchingcomplexityReducednumberofpatchinstallertechnologiesReduceriskofpatchdeploymentImprovedpatchqualityandintroduced
patchrollbackcapabilityReducepatchsizeDeveloped“deltapatching”technologyto
reducepatchsizeReducedowntimeReducedpatch-relatedrebootsImprovetoolconsistencyDevelopingconsistenttoolsImprovetoolcapabilitiesDevelopingmorecapabletoolsChoosingAPatch
ManagementSolutionCustomertypeScenarioSolutionConsumerAllscenariosWindowsUpdateSmallorganizationHasnoWindowsserversWindowsUpdateHasonetothreeWindows2023
ornewerserversandoneITadministratorMBSAandSUSMedium-sizedorlargeenterpriseWantsapatchmanagementsolutionwithbasiclevelofcontrolthatupdatesWindows2023andnewerversionsofWindowsMBSAandSUSWantsasingleflexiblepatchmanagementsolutionwithextendedlevelofcontroltopatch,update,anddistributeallsoftwareSMSPatchManagementSolutionForMedium-SizedAndLargeOrganizationsCapabilitySUS1.0SMS2023
Supported
Platformsfor
ContentWindows2023
WindowsXP
WindowsServer2023WindowsNT4.0
Windows98
Windows2023WindowsXP
WindowsServer2023
Supported
ContentTypes
Securityandsecurity
rolluppatches,critical
updates,andservice
packsfortheabove
operatingsystems
Allpatches,servicepacks,and
updatesfortheaboveoperating
systems;supportspatch,
update,andapplication
installationsforMicrosoftand
otherapplications
Patch
Distribution
Control
Basic
AdvancedOtherSessionsOfInterestWIN280MicrosoftVirtualServer2023:TechnicalOverviewMon,May24
1:30-2:45PMRoom20AWINC28Q&AWiththeVirtualServer
TeamTues,May25
1:30–2:45PMCabana13WIN383UsingMicrosoftVirtualServer2023toInstalla
2-NodeClusterofVirtual
MachinesTues,May25
3:15-4:30PMRoom31ABCWIN381AdvancedConfigurationsScenariosforVirtualServer2023Tues,May25
5:00-6:15PMRoom31ABCWINC10ConsolidatingNT4ApplicationsUsingWindowsVirtualServer2023Wed,May26
10:15-11:30AMCabana12WINC13CreatingaVirtualTestLabwithMicrosoftVirtualServer
2023Wed,May26
5:30-6:45PMCabana12TheImportanceOfProactivePatchManagementAttackPatchreleasedateAttackdateNumberofdayspatchwasavailablebeforetheattackTrojan.KahtMar17,2023May,5202349SQLSlammerJul24,2023Jan24,2023184Klez-EMar29,2023Jan17,2023294NimdaOct17,2023Sept18,2023336CodeRedJun18,2023Jul16,202328DREADHigh(3)Medium(2)Low(1)DamagepotentialAttackercanretrieveextremelysensitivedataandcorruptordestroydataAttackercanretrievesensitivedatabutdolittleelseAttackercanonlyretrievedatathathaslittleornopotentialforharmReproduc-abilityWorkseverytime;doesnotrequireatimingwindowTiming-dependent;worksonlywithinatimewindowRarelyworksExploitabilityBartSimpsoncoulddoitAttackermustbesomewhatknowledgeableandskilledAttackermustbeVERYknowledgeableandskilledAffectedusersMostorallusersSomeusersFewifanyusersDiscoverabiltyAttackercaneasilydiscoverthevulnerabilityAttackermightdiscoverthevulnerabilityAttackerwillhavetodigtodiscoverthevulnerabilityMicroIssuesare88%Simpletofix.Create“Noise”Fiveissuesrepresent88%ofallupgradeissuesDefaultproperties52%Property/methodnotupgraded13%Property/methoddifferentbehavior12%ModulemethodsofCOMobjects7%Null/IsNull4%AnalysisServiceandDTSMigrationWizardsNonewMDACbitsReducedSQLDat
温馨提示
- 1. 本站所有资源如无特殊说明,都需要本地电脑安装OFFICE2007和PDF阅读器。图纸软件为CAD,CAXA,PROE,UG,SolidWorks等.压缩文件请下载最新的WinRAR软件解压。
- 2. 本站的文档不包含任何第三方提供的附件图纸等,如果需要附件,请联系上传者。文件的所有权益归上传用户所有。
- 3. 本站RAR压缩包中若带图纸,网页内容里面会有图纸预览,若没有图纸预览就没有图纸。
- 4. 未经权益所有人同意不得将文件中的内容挪作商业或盈利用途。
- 5. 人人文库网仅提供信息存储空间,仅对用户上传内容的表现方式做保护处理,对用户上传分享的文档内容本身不做任何修改或编辑,并不能对任何下载内容负责。
- 6. 下载文件中如有侵权或不适当内容,请与我们联系,我们立即纠正。
- 7. 本站不保证下载资源的准确性、安全性和完整性, 同时也不承担用户因使用这些下载资源对自己和他人造成任何形式的伤害或损失。
最新文档
- 劳动合同范例谁出
- 保姆合同范例孩子
- 前置仓协议合同范例
- 外墙面工程合同范例
- 卖家售后合同范例
- 劳务派遣托管合同范例
- 土方运填合同范例
- 商品储存合同范例
- 本溪市燃气管道巡查制度
- 期货公司聘用合同格式
- 电工基础知识培训课程
- 广东省2024-2025学年高三上学期10月份联考历史试卷 - 副本
- 2024年长春二道区公益性岗位招聘133名工作人员历年高频难、易错点500题模拟试题附带答案详解
- 工会采购管理制度
- 统编版六年级语文上册《字音辨析》专项测试题带答案
- module-5剑桥BEC商务英语-中级-课件-答案-词汇讲课教案
- 专题03立体几何中的动点问题和最值问题(原卷版+解析)
- 中图版2024-2025学年八年级地理上册期中卷含答案
- 农业机械化在农业机械化作业中的应用考核试卷
- 国开2024年秋《教育心理学》形成性考核1-4答案
- 喷漆安全管理制度
评论
0/150
提交评论