Microsoft released a special guide that helps in planning strategies to
run services securely under the Microsoft Windows Server 2003 and
Windows XP operating systems. It addresses the common problem of
Windows services that are set to run with the highest possible
privileges, which an attacker could compromise.
The Services and Service Accounts Security Planning Guide
is a practical support document for business and information technology
(IT) professionals who are planning a strategy for running services
more securely. Its primary goals and objectives are to:
- Introduce the concepts of running services more securely.
- Describe the importance of running services more securely.
- Describe the principles and strategies to apply when planning a program to run services more securely.
- Describe the best practice guidelines to follow to run services more securely
It is well worth the read, and follows the principles you should be using when deploying software as part of SD3+C.