XP安全设置（国外英文资料）.doc

XP安全设置（国外英文资料） Windows xp security Settings 2007-05-01 00:471.view local Shared resources Run CMD input net share, and if you see an exception sharing, you should close it. But sometimes when you close the sharing of starting up again, so you should consider, you whether the machine is controlled by hackers, or a virus. Delete the share (one in each input) Net share the admin $/ delete Net share c $/ delete Net share d $/ delete (if you have e, f,... you can continue deleting) Delete the ipc $empty connection Input in run regedit, found in _blank / registry hkeys - LOCAL_MACHINESYSTEMCurrentControSetControlLSA in numerical name RestrictAnonymous numerical data from 0 to 1. Close your 139 ports, and the ipc and RPC vulnerabilities exist. Close port 139 is in the network and dial-up connections in the local connection to select Internet protocol (TCP/IP) properties, enter advanced TCP/IP Settings WinS Settings there is a disable TCP/IP NETBIOS, box is closed port 139. 5. To prevent the RPC loophole Open the management tools - services - find the RPC (Remote Procedure Call (RPC) Locator) services - will be the first failure recovery, the second failure, subsequent failure, all set to operate. XP SP2 and 2000 pro sp4 do not exist. Port 6.445 is closed Modify the registry to add a key value HKEY_LOCAL_MACHINESystemCurrentControlSetServicesNetBTParameters creates a SMBDeviceEnabled SMBDeviceEnabled on the right side of the window for the REG_DWORD key value of 0 which is ok. 7.3389 shut down XP: I right-click on my computer - / remote, and remove the hooks from both remote and remote desktop options. 8.4899 There are a lot of intrusions on the network on 3389 and 4899. 4899 is a remote control software to open the server port, because the control software is powerful, so by hackers often used to control their own chickens, and this software will not be antivirus software detected, generally more security than the back door. Unlike 3389, it is the systems own service. Yo