Windows Server 2003 Server security settings method

Windows Server http://www.aliyun.com/zixun/aggregation/19058.html >2003 Server security settings method:

1. Get rid of weak passwords and enhance your username and password.

2. Server firewall settings, such as: Ice Shield firewall +mcafee.

3. Turn off unused ports, such as 445 ports, 139 ports, 135 ports, 3389 ports.

4. Modify 3389 for other remote ports. (range from 1024 to 65535, and cannot conflict)

5. Disable ASP unsafe components, such as: Shell.Application, Wscript.Shell, Wscript.Network, FSO, ADODB.stream, in addition to the FSO may be used.

6.IIS security settings and Web site default directory cannot be used.

The 7.sql password is set.

8. Modify the 1521 port password, mainly for Oracle.

9.net Delete and Net1 (if you do not use the case), so that hackers can not add users.

10. Delete FTP, TFTP (if you do not use the case), so that hackers can not pass the horse.

11. Directly disable cmd.exe, set the ban ping function.

12. Set the Group Policy.

13. Cancel some print network sharing services.

14. Permission settings, remove everyone in C disk permissions.

15. Remove access to all users in C disk, add IIS_WPG access rights, add IIS_WPG access rights [. NET private], add IIS_WPG access rights [installed with MacFee software private], add users access rights, Remove all dangerous folders under Windows C, remove access to system dangerous files, and leave only administrative group members.

This article is dedicated to friends who are in need of server security and personal PC security.