How to make your windows network more secure using www.OpenDNS.org

Well this one is really simple.

On your windows 2003 server go to DNS right click the server go to your forwarders and add the opendns dns servers.
Also go to your root hints tab and remove those. (did you ever check if the default root hints are still valid nah I know, if you use em you should also update them)

Now for all your outgoing lookups the windows server queries the opendns servers.

Why is this safe?

Block the bad sites and whitelist the good.

Phishing Protection

We operate PhishTank.com, the world's most trusted source of phishing data. We integrate that data into an intelligence feed on our DNS servers to keep everyone on your network safe from phony sites trying to steal personal information.

Domain Blocking

You want to secure your network and have control over what resolves. We give you that control by providing the tools to block any website or DNS zone on the Internet, all through an easy-to-use interface.

Adult Site Blocking

Safeguard your kids, protect your students, or limit your corporate liability by blocking adult websites. Our adult site blocking solution can be deployed in minutes and provides granular levels of blocking. Hundreds of school districts are already using OpenDNS to achieve CIPA compliance. Did we mention it's completely free?

Web Proxy Blocking

Prevent people on your network from bypassing the access restrictions you put in place. Blocking Web proxies helps ensure your network remains secure.

Domain Whitelisting

We provide a (growing) list of Web content filtering categories to block, but sometimes there is a domain you want to make sure is never blocked, even if it's listed in a feed. Have the final say with our Domain Whitelisting feature.

Comments

Post a Comment

Popular posts from this blog

Exchange Server Error -1018: How Microsoft IT Recovers Damaged Exchange Databases

Image
I found this paper on the showcase site from microsoft I hope it is of help to you. It sure helped me!     Technical White Paper Published: August 1, 2005 Executive Summary Error –1018 (JET_errReadVerifyFailure) is a familiar—and dreaded—error in Microsoft® Exchange Server. It indicates that an Exchange database file has been damaged by a failure or problem in the underlying file system or hardware. This paper explains the conditions that result in error –1018. It also covers the detection mechanisms that Exchange uses to discover and recover from damage to its database files. The Microsoft Information Technology group (Microsoft IT) runs one of the most extensive Exchange Server organizations in the world. Exchange administrators at Microsoft have investigated and recovered from dozens of –1018 error problems. This paper shows you how Microsoft IT mo...
Read more

[Solved] The Group Policy client-side extension Internet Explorer Zonemapping failed to execute

Image
I had the error below in my application eventlog.     Event Type:    Error Event Source:    Userenv Event Category:    None Event ID:    1085 Date:        30-09-2008 Time:        15:20:30 User:        NT AUTHORITY\SYSTEM Computer:    TBG-TS01 Description: The Group Policy client-side extension Internet Explorer Zonemapping failed to execute. Please look for any errors reported earlier by that extension. For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp .   My problem was with my site to zone assignment list I used a wildcard like this: “ *microsoft.com ” but what you need to do is this “ *.microsoft.com ” So it is safe to say that the documentation from microsoft needs some sort of an update stating that y...
Read more

How to Uninstall WSUS 3.0 after you have (removed/fucked up) the database manually

Well if somehow your wsus 3.0 database becomes corrupt. Due to an Database administrator removing the instance for example. I tried to remove through the Add/Remove programs dialog but all I got back was. Event Type: Information Event Source: MsiInstaller Event Category: None Event ID: 11725 Date: 25-09-2007 Time: 11:17:18 User: Domain\Administrator Computer: WSUSSERVER Description: Product: Microsoft Windows Server Update Services 3.0 -- Removal failed. For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp. Data: 0000: 7b 32 43 30 44 37 45 33 {2C0D7E3 0008: 35 2d 45 45 36 45 2d 34 5-EE6E-4 0010: 44 43 37 2d 42 41 31 33 DC7-BA13 0018: 2d 32 43 36 38 41 45 44 -2C68AED 0020: 45 42 35 39 44 7d EB59D} And voila the program was removed from the ADD/Remove Programs dialog. So I had nothing. Inspecting the Wsus installation log at %temp%\wsus*.log Reveals the following: MSI (s) (8C:74) [11:17:38:402]: Product: Microsoft Windows Serve...
Read more