IN THE PREVIOUS CHAPTER you learned about the organization of the Windows operating system and the basics of access control. You learned about local access control and how Windows extends access credentials beyond the local machine through Active Directory. In this chapter you'll start learning the details of Windows security features and specific steps to make Windows computers more secure.

As in any complex endeavor, it is important to understand the concepts of information systems security before you start making changes and placing controls. Poorly placed security controls can often do more harm than good. A control that is too permissive to be effective does not increase security. Likewise, ...