Mail System Error - Returned Mail

Mail Administrato ( Postmaster@neptune.yebo.co.za )
Tue, 20 Oct 1998 11:34:14 +0200

--===========================_ _= 2914123(7739)
Content-Type: text/plain

This Message was undeliverable due to the following reason:

The following destination addresses were unknown (please check
the addresses and re-mail the message):

SMTP <macmilan@yebo.co.za>

Please reply to Postmaster@neptune.yebo.co.za
if you feel this message to be in error.

--===========================_ _= 2914123(7739)
Content-Type: message/rfc822

Received: from relay01.iafrica.com ([196.7.0.160]) by neptune.yebo.co.za
(Post.Office MTA Undefined release Undefined
ID# 0-54426U40000L40000S0V35) with ESMTP id AAA3008
for <macmilan@yebo.co.za> Sat, 17 Oct 1998 11:27:58 +0200
Received: from [207.53.165.8] (helo=walnut.iea-software.com)
by relay01.iafrica.com with esmtp (Exim 1.92 #2)
for macmilan@sprintlink.co.za
id 0zUSdq-0006yj-00; Sat, 17 Oct 1998 11:27:24 +0200
Received: from walnut.iea-software.com (walnut.iea-software.com [207.53.165.8]) by walnut.iea-software.com (NTMail 4.00.0020/NT6651.00.c89adb95) with ESMTP id za002517 for <ntisp@iea-software.com> Sat, 17 Oct 1998 02:11:53 -0700
Received: from [205.199.135.10] by walnut.iea-software.com (NTMail 4.00.0020/NT6651.00.c89adb95) with ESMTP id wtnbaaaa for <ntisp@iea-software.com> Sat, 17 Oct 1998 02:11:49 -0700
Received: (qmail 12338 invoked by uid 405); 17 Oct 1998 09:19:12 -0000
Message-ID: <19981017091912.12337.qmail@ran.zipcon.net>
From: zip-ntisp@ran.zipcon.net
Date: 17 Oct 1998 02:19:12 -0700
To: ntisp@iea-software.com
Subject: Setting up a secure NT box
X-DomainScript: iea-software.com\\script.mml
X-Script: \\FilterScript.mml
X-UserScript: iea-software.com\ntisp\script.mml

Hello,
I am a bit new to NT and would like to add this to the list. I'm
trying to run a fairly secure box here. Here is my configuration.

Its a standalone server, NTFS with some filesystem permission changes to
try and make things secure. I have not renamed the admin account, is that
something most people do?

For protocols, only TCP/IP

For services, I run:
Computer Browser
NetBIOS Interface
Remote Access Service (optional)
RPC Configuration
Server
Windows Internet Name Service
Workstation

Does anyone remove some of the above? I believe I can go without RAS
and WINS, but I'm unsure of the rest. I believe IIS 4 and maybe some
other internal NT software uses RPC and the NetBIOS interface. What
about Computer Browser, Server, and Workstation, are those needed?

I have the following patches/addons in this order:

Install SP3
Install IE4.01
Install Option Pack 4
Install IE4USP (IE 4.01 update)

Install the following hotfixes:

dns-fix
roll-up
getadmin-fix
winsupd-fix
ndis-fix
simptcp-fix
ide-fix
wan-fix
pent-fix
iis4-fix
teardrop2-fix
srv-fix
y2k-fix
euro-fix
atapi-fix
netbt-fix
lsa2-fix
ssl-fix
priv-fix
pptp3-fix
rras30-fix
snk-fix

Install War FTP 1.70b01s04

Thats it! Does everyone here install all the hot fixes, or just firewall
off the NT boxes? Thanks, Dan
--===========================_ _= 2914123(7739)--