Securing Windows 2003 Server security settings

This article is I do the server maintenance Click Experience, part is I according to the intrusion method to do the corresponding configuration adjustment! Most of the content on the Internet, there may be some people think that is plagiarism, regardless of, as long as we have a help on OK, if you have different views of this article, very welcome to communicate with me!

And one more thing I want to say is, this article discusses the focus of the content of the server security settings, is based on a certain security settings on the basis of discussion, and, for the basis of the content I also listed in the end of the title, but a good online article is quite a lot, I do not want to bother to write! So, after all, don't say a few things about disk settings like this!

1, modify the Administrator account name and Guest account name

This step is mainly to prevent intruders using the default system username or Guest account immediately for profiteering special (legality please self-examination), after the change, do not forget to modify the strong password.

Control Panel-management tools-local Security policy-local policy-security options

At the bottom of the right column, as shown in the picture:

2, modify the Remote Desktop Connection port

Run Regedt32 and go to this item:

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Terminal Server\winstations\rdp-tcp

Find the "PortNumber" subkey, and you will see the value 00000d3d, which is the hexadecimal representation of 3389. Use hexadecimal values to modify this port number and save the new value.

Small door: Ladies and gentlemen, do not see the hexadecimal on the headache, in the modification of the key values also support the decimal