Feel the security improvements in Windows 7

When Microsoft embarked on a bold plan for Windows 7, there was already a mixed debate about the new operating system. After all, does Vista come out soon, and does the new operating system really give users a better experience? For users who have long been concerned about the Windows operating system, it is more interesting to know if security can be elevated. Although Apple released the words "Windows 7 is only vista plus a few patches," but everyone has reason to believe that Microsoft, the new version of the change will not be so simple.

One, UAC change body

In fact, there is a debate about the UAC feature in Vista, which has increased security while reducing the user experience. Thus, in Windows 7, Microsoft began to let users choose the notification level for UAC, and also improved the user interface to enhance the experience. The biggest improvement in UAC in Windows 7 is that it provides more control options in the Control Panel, and allows users to choose the appropriate UAC level for their needs.

Enter "Secpol.msc" in the Start Menu search box and return to open the Local Security Policy Editor, select Local policy → security options, and then in the list on the right, locate the "User Account Control: Administrator's elevation prompt behavior attribute in Admin Approval Mode" and the user can see "Local Security Settings" There are six choices in the Drop-down list in: No prompts, direct elevation, prompt credentials on the secure desktop, consent prompt on secure desktop, prompt credentials, consent prompt, non-Windows binaries consent prompt. There is a need to mention the "Non-Windows binaries consent hint", which is a good way to filter Windows system files and directly use the UAC feature for your application, which is the highlight of Windows 7.

Another intuitive way to modify the user account to enter the control Panel changes the interface, click "Change user Account Control Settings", the UAC settings under Windows 7 provides a slider allows users to set the level of notification, you can choose 4 ways, but obviously not the above method flexible.

Ii. the Centre for Action

Windows 7 removes the Security Center that was originally launched with Windows XP SP2, instead of the Action Center. Here the bread contains the safety center; problem, report and solution Party; Windows Defender; Windows update;diagnostics; network Access Protection, backup and Reply (Backupandrestore), Recovery (Recovery), and UAC mentioned above.

After entering the behavior Center, Windows 7 supports fast scanning of the local computer with Windows Defender. We scan the system disk in Lenovo T61 notebook, it takes only 33 seconds, scanning resources up to 34,931, although it is difficult to define the security of Windows Defender for the system itself, but as the system has a high degree of compatibility with system software, so the scanning speed is very good.

In fact, Windows defender in the center of the function can also make it more perfect performance. The Realtime Protection feature scans the programs that are downloaded and run. You can also filter for specific file types and paths, and support the scanning of messages and mobile storage, and so on.

In security settings, users can clearly see the current system's various services enabled, and maintenance areas can also display information such as detection problem reports or backups.

Third, the new firewall function

The biggest feature of the firewall under Windows 7 is the internal and external defenses, which protect the intranet through the home or work networks and public networks.

Advanced Setup projects are also more comprehensive, through the inbound and the rules of the game can clearly outline the current network flow situation, and for the operation of the configuration file and the introduction of the strategy has been greatly improved. It is believed that the Windows 7 firewall will have a greater use in the future update upgrades.

Iv. Security Deployment Detail Issues & Summary

Like XP and Vista, Windows 7 security deployments also need to draw on the security processes of the Windows family. This near-universal approach can provide better assurance for the security of Windows 7.

1. Account issues

The vast majority of hackers invade, get root authority will be no-man. The security of the account also becomes the most important. As you all know, administrator-level accounts can have high enough access to control windows. So it is necessary to have an unnoticed name for the administrator, but please do not use names such as admin, because many hacker tools in the dictionary, admin's guess solution frequency is no lower than the administrator.

In addition, the Guest account is stopped in user management and is not allowed to log in to the system at any time. Of course, this way for personal PC is more suitable, if you often encounter multiple user login or limited login, it is best to set a common password for the account to shield the intrusion of the outside network.

2. Sharing issues

Under CMD, enter "net share" to view shared resources. There is a sharing of IPC channels, documents, and printers, and of course the default system may also include hard disk sharing. The prohibition method is as follows:

NET share $/delete (delete C disk share, other letter similar)

NET share ipc$/delete (remove IPC share)

3. Port issues

There are some ports in the system is very dangerous, hackers can control our computer through these ports, such as 3389 ports, before the shutdown needs to understand the open port in the computer, in the cmd input "Netstat-an", see Open the 135, 139 ports, need to ban it. This approach is best through a dedicated firewall to monitor or directly shut down, in the management of the system than the filtering method more convenient and quick.

Obviously, "Windows 7 is just vista plus a few patches" is slightly biased, but Windows is also not invulnerable. We can understand some of the complaints and questions that outsiders and competitors have about Microsoft, but there is no doubt that Windows 7 has a better security performance. The UAC flaw is only an event magnified by public opinion.

Faced with such a huge code camp, many computer experts built up Windows 7 will also be flawed, just as Windows 2000 faces Windows 98,windows XP facing Windows 2000,windows Vista facing windows XP, which is still flawed, Windows 7 is destined to be a driving machine in the history of operating systems.