nt/2000 Server Ultimate Security Setting and Efficiency Optimization Guide (2)

Method:

(1) NT: Management Tools-Server Manager-shared directory-stop sharing;

2000: Control Board--management tools--calculation and management--shared folders ——— stop sharing

But both of these methods are too cumbersome for the server to restart every time the administrator has to stop

(2) Modify the registration form:

Run regedit, and then modify the registry to add a key under Hkey_local_machinesystemcurrentcontrolsetserviceslanmanserverparameters

Name:autoshareserver

Type:reg_dword

value:0

Then restart your server, disk partition sharing is removed, but the IPC share still exists and needs to be manually removed after each reboot.

12. Change NTFS security permissions;

Description: All files under NTFS are completely controlled by default for everyone (everyone), which makes it possible for hackers to add, delete, perform, and so on, using the general user identity, suggesting that only read permission is given to the general user, and that only the administrator and system have full control over the permissions. But doing so may cause some normal scripting programs to fail, or some of the actions that need to be written cannot be completed, and you need to make changes to the folder permissions where the files are located, and it is recommended that you test the test machine before making the changes, and then carefully change it.

13. Strengthen data backup;

Description: This is very important, the site's core is the data, once the data has been destroyed disastrous consequences, and this is often the real concern of hackers; Unfortunately, many network management at this point did not do well, not backup incomplete, that is, backup is not timely. Data backup requires careful planning, a strategy is developed and tested before implementation, and as the site is updated, backup plans need to be constantly adjusted.

14. Only maintain TCP/IP protocol, delete NetBEUI, ipx/spx protocol;

Description: The website needs the communication protocol only TCP/IP, and NetBEUI is a LAN-only protocol, ipx/spx is facing the elimination of the Agreement, put on the site does not have any use, but will be used by some hacker tools.

Zebian: Bean Technology Application