Full blocking of Windows 2003 security risks

Windows2003 function is constantly enhanced, but because of congenital reasons, it still has a lot of security risks, if not to these hidden dangers "blocked", may bring unnecessary trouble to the whole system; The following author introduces the Windows2003 of the unusual security hidden danger Hope to bring help to you!

By automatically saving hidden dangers

WINDOWS2003 operating system in the call to the application error, the system Dr.Watson will automatically save some important debugging information in order to maintain the system later to view, but this information is likely to be hackers "aim", once the aim of the words, all kinds of important debugging information will be exposed, In order to block the Dr.Watson automatically save debugging information, we can follow the following steps to achieve:

1, open the Start menu, select the "Run" command, in the subsequent opening of the Run dialog box, enter the registry edit command "regedit" command, open a Registry editing window;

2, in this window, with the mouse to expand the Hkey_local_machine\software\microsoft\windowsdowsnt\currentversion\aedebug branch in turn, In the right child window corresponding to the AeDebug key value, double-click the auto value and reset the value to "0" in the pop-up parameter Settings window;

3. Open the Windows Explorer window of the system and expand the Documentsandsettings folder, AllUsers folder, shareddocuments folder, DrWatson folder in turn, Finally, the corresponding DrWatson in the User.dmp file, Drwtsn32.log file deleted.

Complete the above settings, restart the system, you can automatically save hidden trouble.

Resource sharing hidden Dangers

In order to facilitate the transmission of information between local area network users, the WindowsServer2003 system is "considerate" for you to provide the file and print sharing function, but we enjoy the function to bring convenience at the same time, sharing features will be "Wolf", "magnanimous" To hackers open a lot of loopholes, to the server system caused a lot of insecurity; therefore, when using the file or Print sharing function, we must always turn off the function at any time, so that the resources to share hidden dangers, the following is the specific steps to turn off the sharing function:

1, the implementation of the Control Panel menu items under the "Network Connection" command, in the subsequent window, the right mouse click on the "Local Connection" icon;

2, in the Open shortcut menu, click Properties, so that you can open an Internet Protocol (TCP/IP) property Settings dialog box;

3, in this interface to cancel the "Microsoft Network file and Printer sharing" this option;

4. In this way, the local computer will not be able to provide the external file and print sharing services, so that hackers naturally less attack the system's "channel."

Blocking remote access vulnerabilities

Under the Windows2003 system, to make remote network access connection, the Remote Desktop function under this system can transmit the user name and password entered in the network connection to the client program of the corresponding connection by means of ordinary clear text content, and realize "placement" in the process of plaintext account transmission. In the network channel of various sniffer tools, will automatically enter the "sniff" state, this clear-text account is very easy to be "captive"; clear-Text account content once the hacker or other attackers to seek his use, oh, careful their system is "crazy" attack it! To eliminate this security risk, we can "reinforce" the system in the following ways:

1, click on the System desktop "Start" button, open the Start menu;

2, from the implementation of Control Panel commands, from the pop-up drop-down menu, select the "System" command, open a System Properties settings interface;

3, in the interface, with the mouse click "Remote" label;

4, in the subsequent label page, the "Allow users to connect remotely to this computer" option is canceled, so that the remote access connection function can be blocked off, thereby blocking remote access vulnerabilities.

Blocking User Switching potential

The WINDOWS2003 system provides us with fast User Switching capabilities, with this feature we can easily log into the system, but in the enjoyment of this ease, the system also has a hidden trouble, for example, if we execute the system "start" menu in the "Logoff" command to quickly "switch users", The traditional way to log in to the system, the system is likely to log in incorrectly as a violent "attack" on computer systems, so that the Windows2003 system might lock up the currently logged in account as an illegal account, which is clearly not what we need; We can follow the following steps to block the user switching, the security risks created:

On the Windows2003 system desktop, open the Control Panel command under the Start menu, locate the Administrative Tools command below, perform the Computer Management command on the subordinate menu, locate the user account icon, and in the window that appears, click Change how users log on or off. ; In the Open Settings window, the "Use Fast User Switching" option will be canceled.

Block the page to exchange hidden trouble

The Windows2003 operating system may disclose important confidential information, especially important account information, to hackers or other visitors, even under normal working conditions. Maybe we'll never think of looking at files that might leak privacy information, but hackers are concerned about them. WINDOWS2003 operating system in the paging file, in fact, hidden a lot of important privacy information, this information is generated in the dynamic, if they do not clean up in time, it is very likely to become a hacker invasion breach; For this reason, we must follow the following methods, To allow the Windows2003 operating system to automatically remove all paging files from the system when it is shut down:

1, in the Windows2003 "Start" menu, execute the "Run" command, open the Run dialog box, and enter the "Regedit" command, to open the Registry window;

2. In the left area of the window, click the Hkey_local_machine\system\currentcontrolset\control\sessionmanager\memorymanagement key value with the mouse, Locate the ClearPageFileAtShutdown key value in the right area (as shown in Figure 2), double-click it, and modify the DWORD value to "1" in the subsequent open Numeric Settings window;