Riordan Manufacturing Enterprise Security Analysis
Riordan Manfacturing Enterprise Security Analysis
CMGT/430 Version 3
October 31, 2011
Dave Perkins
Riordan Manufacturing Enterprise Security Analysis Riordan Manufacturing has offices in 4 locations. The corporate office is located in San Jose California. The review of all locations revealed that each location utilized Windows based products for processing of email. Below are the findings of server equipment at the various locations. 1) San Jose, CA a. Windows Exchange Server 2) Pontiac, MI a. Windows NT Exchange Server 3) Albany, GA a. Windows NT Exchange Server 4) Hangzhou, China a. Windows Exchange Server There are multiple vulnerabilities related to the Windows Exchange Servers that need to be address prior to establishing an enterprise security policy. Although all locations are capable of sending and receiving e-mail, they are very susceptible to attack from outside sources.
Recommendations to correct the problems associated with the Windows Exchange Server include upgrading to the latest Exchange Server, inclusion in enterprise wide backup plans, and adherence to government regulations regarding e-mail archiving and retention.
Risks versus Vulnerabilities Matrix
An assessment of Riordan Manufacturing E-mail Exchange Servers identified high impact vulnerabilities. If these vulnerabilities are not address they can hinder the speed of e-mail delivery and could also cause a denial of service (DoS) to users.
Asset Probability Impact Security Level Mitigation
Windows Exchange Server (E-Mail) High High High Keep up-to-date on patches for software and the underlying operating system; Install safeguards at various points of entry into the server; Upgrade to latest up-to-date version of Exchange Server.
Windows NT Exchange Server (E-Mail) High High High Use NTFS file system; Review all files to eliminate unnecessary shares; Add share permissions to shares to prevent anonymous access; Apply anti-virus solution
CMGT/430 Version 3
October 31, 2011
Dave Perkins
Riordan Manufacturing Enterprise Security Analysis Riordan Manufacturing has offices in 4 locations. The corporate office is located in San Jose California. The review of all locations revealed that each location utilized Windows based products for processing of email. Below are the findings of server equipment at the various locations. 1) San Jose, CA a. Windows Exchange Server 2) Pontiac, MI a. Windows NT Exchange Server 3) Albany, GA a. Windows NT Exchange Server 4) Hangzhou, China a. Windows Exchange Server There are multiple vulnerabilities related to the Windows Exchange Servers that need to be address prior to establishing an enterprise security policy. Although all locations are capable of sending and receiving e-mail, they are very susceptible to attack from outside sources.
Recommendations to correct the problems associated with the Windows Exchange Server include upgrading to the latest Exchange Server, inclusion in enterprise wide backup plans, and adherence to government regulations regarding e-mail archiving and retention.
Risks versus Vulnerabilities Matrix
An assessment of Riordan Manufacturing E-mail Exchange Servers identified high impact vulnerabilities. If these vulnerabilities are not address they can hinder the speed of e-mail delivery and could also cause a denial of service (DoS) to users.
Asset Probability Impact Security Level Mitigation
Windows Exchange Server (E-Mail) High High High Keep up-to-date on patches for software and the underlying operating system; Install safeguards at various points of entry into the server; Upgrade to latest up-to-date version of Exchange Server.
Windows NT Exchange Server (E-Mail) High High High Use NTFS file system; Review all files to eliminate unnecessary shares; Add share permissions to shares to prevent anonymous access; Apply anti-virus solution
References: http://www.us-cert.gov/cas/techalerts/TA05-284A.html http://msdn.microsoft.com/en-us/library/ms913208(v=winembedded.5).aspx