Application Center Security and Windows 2000
Application Center security is based on the services provided by Windows 2000 and, in particular, IIS. Application Center itself has few user-configurable security settings. Therefore, it is critical that you understand the underlying Windows 2000 security architecture.
Review the following information before making any security-related decisions.
Product Documentation
Windows 2000 Server Help — "Security"
Windows 2000 Server Help — "Internet Tools and Services"
Books
Microsoft Windows 2000 Server Resource Kit — Microsoft Press
Designing Secure Web-Based Applications for Microsoft Windows 2000 — Microsoft Press
Firewalls and Internet Security: Repelling the Wily Hacker — Addison Wesley Longman, Inc
Hacking Exposed: Network Security Secrets and Solutions —Osborne Publishing
Web Sites
You should visit the following Web sites regularly to ensure that you are up to date with security issues:
https://www.microsoft.com/security/ — this site maintains information on the latest security issues related to Microsoft products. It also has links to the security sections for Microsoft TechNet and the Microsoft Developer Network (MSDN).
https://www.sans.org/ — System Administration, Networking, and Security (SANS) Institute.
https://www.cert.org/ — the Computer Emergency Response Team Coordination Center (CERT/CC).
https://www.cerias.purdue.edu/ — Center for Education and Research in Information Assurance and Security (CERIAS).
https://www.gocsi.com/ — the Computer Security Institute.
Did you find this information useful? Please send your suggestions and comments about the documentation to acdocs@microsoft.com.