Since many of us will be beating the crap out of Win2K3 in lab environments, I figured that others here could use this doc put out by microsoft. It is a security guide for the new Win 2K3 server. I have just gotten my hands on W2K3 so I can't really say how good this is but it is worth a look none the less.


From the site:
=============================================
The Windows Server 2003 Security Guide provides levels of guidance for a number of server roles in multiple different client environments. This guidance includes steps to harden Domain Controllers, Infrastructure servers, File servers, Print servers, IIS servers, IAS servers.

The Windows Server 2003 Security Guide focuses on providing a set of easy to understand guidance, tools, and templates to help secure Windows Server 2003 in many environments. While the product is extremely secure from the default installation, there are a number of security options that can be further configured based on specific requirements. This guidance not only provides recommendations, but also the background information on the risk that the setting is used to mitigate as well as the impact to an environment when the option is configured.

You can get the download here:
=============================================
http://microsoft.com/downloads/detai...displaylang=en