I'll teach you how to learn. System Security Registry _ registration Form

For now a wide variety of viruses, cyber hackers and some friends who like to play pranks, we have to do a good job of prevention, so that some important or private information is exposed. Here, we mainly talk about the application of the registry to play a corresponding protective effect of the example.

To resist backdoor damage:

If your computer is online, there is a potential risk of hacking, there is a backdoor called backdoor, a special system of vulnerability to attack, we can modify the registry to prevent. Open the Hkey_local_machine\softwaremicrosoft windowscurrentversionrun branch and delete the "Notepad" key value entry in the right window.

To prevent hidden files from being displayed through Folder options:

The use of hidden files in Folder Options to protect files is unreliable, and any user can see hidden files by selecting Show All files. It's no longer easy to see hidden files when you modify them in the registry. Open the HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows CurrentVersion Exploreradvancedfolderhiddenshowall subkey Branch, Change the value of CheckedValue in the right window to 0 so that hidden files are not displayed even if you select Show all files in Folder options.

To mask network access to floppy disks:

Many viruses in the computer are spread through floppy disks in addition to being transmitted from the network. Therefore, the shielding of the floppy disk access can effectively improve the security of the system. Opens the Hkey_local_machinesoftware microsoftwindows Ntcurrentversionwinlogon subkey branch in the registry. Change the allocatefloppies double byte key value entry in the right window to 1.

Protect against computer attacks by WinNuke hacker programs:

WinNuke is a highly destructive program that destroys Windows XP systems on your computer, causing the entire computer system to become paralyzed, and you can guard against WinNuke attacks through the registry. Open Hkey_local_machinesystemcurrentcontrolsetservicesvxdmstcp, create a new double-byte value in the right window, name "Bsdurgent", and set its key value to 0.

To prevent users from locking computers:

In Windows Security window, if you press the Ctrl+alt+del key combination at the same time, you can click the Lock computer key to make the user unable to use the computer unless you type the user's password to unlock it. You can prevent users from locking the computer by modifying the registry. Open the Hkey_current_usersoftwaremicrosoft Windowscurrentversionpoliciessystem branch and create a new double-byte value in the right window Disablelockworkstation, set its key value to 1.

To prevent viewing the contents of a specified disk drive:

If you have important data stored in a disk drive and you do not want users to see the contents of the drive, you can use this method to prevent viewing the contents of the drive, which is to open Hkey_current_usersoftwaremicrosoft in Registry Editor Windowscurrent Versionpoliciesexplorer Branch, create a new Double-byte value "Noviewondrive" in the right window, with a key value of 26 digits from the lowest (No. 0) to 25th digits, Represents drive A to drive Z, respectively. For example, if you want to prevent users from using floppy disk A, floppy B, and drive D, you can set its key value to "0000000B" (No. 0, 1, 3 bit 1, binary 1011 to hexadecimal B), and restart to take effect. Now, go to "My Computer", drive A, B, D still appear, but when you double-click them, a message box pops up informing the user that the operation is not possible, but the application still has access to the banned drive, and the icon for the banned drive still appears in My Computer and explorer.

Disable the command interpreter and batch file from running:

By modifying the Windows XP registry, you can prevent users from using the command interpreter (CMD.exe) and running a batch file (. bat file), that is, open Hkey_current_ in Registry Editor Usersoftwarepoliciesmicrosoftwindowssystem the subkey, and then create a new Double-byte value "Disablecmd" in the right window to set its key value to 2 so that neither the command interpreter nor the batch file can run. Setting the value to 1 will only prevent the command interpreter from running.

To prevent users from changing passwords:

Users in Windows Security window, if you press the Ctrl+alt+del key combination at the same time, you can click Change Password to change the user password. We can prevent users from changing passwords through the registry, open the Hkey_current_usersoftwaremicrosoft windowscurrentversion Policiessystem subkey, and create a new double-byte value in the right window. Named "DisableChangePassword", set its value to 1. In this way, the Change Password button in the Windows XP Security window becomes a prohibited state and the user cannot change the password.

To prevent changes to temporary file settings:

Open the Hkey_current_usersoftwarepoliciesmicrosoftinternet Explorercontrol panel subkey, and then create a new double-byte value in the right window, named Cache, Set its value to 1.

Prohibit changing history settings:

Open the Hkey_current_usersoftwarepoliciesmicrosoftinternet Explorercontrol panel subkey, and then create a new double-byte value in the right window, named "History", Set its value to 1.

To disable security options:

Open the Hkey_current_usersoftwarepoliciesmicrosoftinternet Explorercontrol panel subkey, and then create a new double-byte value in the right window, named "Securitytab , set its value to 1.

To disable content options:

Open the Hkey_current_usersoftwarepoliciesmicrosoftinternet Explorercontrol panel subkey, and then create a new double-byte value in the right window, named "Contenttab" , set its value to 1.

To disable the AutoComplete feature for a form:

Open the Hkey_current_usersoftwarepoliciesmicrosoftinternet Explorercontrol panel subkey, and then create a new double-byte value in the right window, named "Formsuggest , set its value to 1.

Disable Auto-complete save password:

Open the Hkey_current_usersoftwarepoliciesmicrosoftinternet Explorercontrol panel subkey, and then create a new double-byte value in the right window, named " Formsuggestpasswords, set its value to 1.

Disable changing Advanced page settings:

Open the Hkey_current_usersoftwarepoliciesmicrosoftinternet Explorercontrol panel subkey, and then create a new double-byte value in the right window, named "Advanced", Set its value to 1.

To disable caching of automatic proxy scripts:

Open the Hkey_current_usersoftwarepoliciesmicrosoftwindowscurrentversioninternet Settings subkey Branch, and then create a new double-byte value in the right window, named Enableautoproxyresultcache, set its value to 0.

Disable changing the default browser check:

Open the Hkey_current_usersoftwarepoliciesmicrosoftinternet Explorercontrol panel subkey, and then create a new double-byte value in the right window, named "Check_if_ Default, set its value to 1.

To disable the Reset Web Settings feature:

Open the Hkey_current_usersoftwarepoliciesmicrosoftinternet Explorercontrol panel subkey, and then create a new double-byte value in the right window, named " ResetWebSettings, set its value to 1.

Use the registry to unlock "disc bodyguards":

"Disc bodyguards" to a certain extent to prevent the use of unauthorized discs, but when you need to use the software in the unacknowledged CD, do not know how to unlock the password to do? The following "CD-ROM Bodyguard" version 1.23 as an example to explain. We can use the registry for permanent unlocking. Open the Hkey_local_machinesoftwaremicrosoftwindowscurrentversionrun branch, remove the key value entry "CDBB" from the right window, and restart the computer for permanent unlock purposes.

Additional restrictions on anonymous connections:

Opens the Hkey_local_machinesystemcurrentcontrolsetcontrollsa subkey branch and creates a new Double-byte value "Restrictanonymo" in the right window, which is typically used to restrict ipc$ null connections. If the value is set to 0, it is not appropriate to go with the default permission permissions. If 1, SAM accounts and shares are not allowed. If 2, it cannot be accessed without specifying anonymous permissions.

To empty virtual memory at shutdown:

Open the Hkey_local_machinesystemcurrentcontrolset controlsession managermemory subkey in Registry Editor and create a new Double-byte key entry in the right window ClearPageFileAtShutdown, set its value to 1. Note, however, that this can significantly increase the length of the shutdown time.

To enable automatic logoff of users:

Open the Hkey_local_machinesystemcurrentcontrolsetserviceslanmanserver Parameters branch and create a new double-byte value in the right window Enableforcedlogoff, set its key value to 1.

Send an unencrypted password to connect to a third party SMB server:

Open the Hkey_local_machinesystemcurrentcontrolsetservices lanmanworkstationparameters branch and create a new double-byte value in the right window EnablePlainTextPassword, set its value to 1.

Always digitally encrypt or sign secure channel data:

Open the Hkey_local_machinesystemcurrentcontrolsetservicesnetlogon Parameters subkey and create a new Double-byte value "Requiresignorseal" in the right window. Set its key value to 1.

To enable a strong session password:

Open the Hkey_local_machinesystemcurrentcontrolsetservicesnetlogon Parameters subkey and create a new Double-byte value "Requirestrongkey" in the right window. Set its key value to 1.

Don't be realistic on the screen. Last Login Username:

Open the Hkey_local_machinesoftwaremicrosoftwindowscurrentversion Policiessystem branch and create a new double-byte value in the right window DontDisplayLastUserName, set its key value to 1.

To set up a locally logged user to access a CD-ROM:

Open the Hkey_local_machinesoftwaremicrosoftwindowscurrentversion Winlogon subkey and create a new Double-byte value "AllocateCDRoms" in the right window to set its value to 1. If set to "allocatefloppies", it means that only local users can access the floppy drive.