Eliminate XP operating system's own security Risks _ registry

When you surf the Internet, do you think? A variety of potential threats may come at any time. For network viruses, hacker tools are more important, the loss is relatively small, and for Windows XP in order to improve the ease of use of many of the default settings, but it is ignored, in fact, the system defaults not only can not do security but for us to add more risk. How can I minimize the security implications of Windows XP? Let's take a look at it together!

　　 1. Simple File sharing

In order for users on the network to have a few mouse clicks to achieve file sharing, Windows XP adds a feature called "Simple File sharing," but it also opens a number of NetBIOS vulnerabilities. To turn off Simple File sharing: Open My Computer, select menu tools → Folder Options, click View, and cancel the use Simple File sharing (recommended) in Advanced settings (see Figure 1).
Figure I
　　 2, FAT32 partition

Do you think it's safe to install all the patches? The FAT32 partition you use is a security risk, after all, the security and stability of Microsoft's new system are based on NTFS partitions. To improve security, it is necessary to convert the FAT32 file system to NTFS. NTFS allows for more comprehensive control over file and folder permissions, and can also use the Encrypting File System (efs,encrypting) to ensure that data is not stolen from the file partition level. Right-click the drive in My Computer and select Properties to view the current file system of the drive. If you want to convert the file system to NTFS, first back up the important files, then select the menu "Start" → "Run", enter "cmd", click "OK". Next, execute the Convert x:/fs:ntfs (where x is the drive letter) in the Command Line window.

　　 3. Guest Account

The Guest account, the so-called Guest account, has access to the computer but is restricted. Unfortunately, the guest also opened the door for hacking. If you do not need to use the Guest account, it is best to disable it. In Win XP Pro, open "control Panel" → "Management tools" and click "Computer Management". In the list on the left, locate local Users and groups and click Users in the right pane, double-click the Guest account, and select "Account deactivated." The Win XP home version does not allow us to deactivate the Guest account, but allows you to set a password for the Guest account: first execute the net user Guest password command in the command line environment, and then go to Control Panel, user settings, and set the Guest account password.

　　 4. Administrator account

NT system has a built-in system administrator account administrators, this account for the entire system has the highest level of control, need to focus attention. However, this account is hidden in Windows XP, and the password for the account is entered when the operating system is installed. Many people may not be aware of this, so there is no password for the administrator account, in which case, as long as a malicious person can access your computer through the network or directly, your system and data are in danger. So if you have a blank password in your system, it's a good idea to set a password for this account. Also, we may not have to use the name "Administrator". In the Windows XP home or Pro version, it is a good idea to create another account with full permissions and then deactivate the Administrator account. Finally, don't forget to set up a complex password for all your accounts. The way to deactivate an administrator account is to open the control Panel → Administrative tools and click Computer Management. Locate "Local Users and Groups" in the list on the left and click "Users" in it, and in the right pane, double-click the Administrator account to select "Account deactivated".

　　 5. Redundant Services

A user-friendly, Win XP by default started a lot of services that are not necessarily used, but also open the backdoor of the intrusion system. If you don't use these services, it's best to close them: NetMeeting Remote Desktop sharing,remote Desktop help session Manager,remote Registry,routing and Remote ACCESS,SSDP Discovery service,telnet,universal Plug and play Device Host.

Open the Control Panel → administrative tools → services to see descriptions and running status for these services. To turn off a service, simply right-click the service name and choose the "Properties" menu, Change the "Startup type" to "manual" On the General tab, and click the "Stop" button (see Figure 2).

Figure II