Home > Developer > Windows

Erecting a security fortress for Windows Server 2003

Source: Internet
Author: User
Tags modify
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

If you have ever configured Windows NT Server or Windows Server, you may find that these Microsoft products defaults are not the safest. While Microsoft offers a lot of security, it still needs you to implement them. However, when Microsoft released Windows Server 2003, it changed the philosophy of the past. The new idea is that servers should be safe by default. This is a good idea, but Microsoft has not done it thoroughly enough. Although the default Windows 2003 installation is definitely more secure than a Windows NT or Windows 2000 installation, it still has some drawbacks. Now let me show you how to make Windows Server 2003 more secure.

First step: Modify the Administrator account and create the trap account:

Modify a built-in user account for years, Microsoft has been emphasizing that it is best to rename the Administrator account and disable the Guest account to achieve higher security. In Windows Server 2003, the Guest account is disabled by default, but renaming the administrator account is still necessary because hackers often start attacking from the administrator account. Open the Local Security Settings dialog box, expand Local policy → security options, and in the right pane there is a "account: Rename administrator Account" policy, double-click to open it, reset an insipid username for the administrator, and of course, Please do not use the name of admin, change is equal to do not change, try to disguise it as ordinary users, such as change into: Guestone. Then create a new trap account called the administrator "restricted user", set its permissions to the minimum, do nothing, and add a super complex password of more than 10 bits. This will allow those Scripts s to be busy for some time, and can use this to discover their intrusion attempts. Or do something on it's login scripts.
The second step is to remove the risk of default share existence

WINDOWS2003 installed, the system will create some hidden shares, you can play in the cmd net share view them. There are many articles on the internet about IPC intrusion, I believe you must be familiar with it. So we want to disable or remove these shares to ensure security by first writing a batch file with the following:

Zebian: Bean Technology Application



This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
windows server 2003 for dummies best antivirus for windows server 2003 download iis 6 for windows server 2003 windows server 2003 setup install windows server 2003 mysql windows server 2003 wamp windows server 2003

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More