Windows 2003 server Prevent Trojan security settings _ security Settings

Source: Internet
Author: User
Delete the following registry primary key:
Wscript.Shell
Wscript.shell.1
Shell.Application
Shell.application.1
Wscript.Network
Wscript.network.1
regsvr32/u wshom.ocx carriage return, regsvr32/u wshext.dll carriage return
Windows 2003 hard Drive security settings
C:\
Administrators All
System All
IIS_WPG only This folder
List Folder/Read data
Read properties
Read Extended Properties
Read permissions

C:\inetpub\mailroot
Administrators All
System All
Service All
C:\inetpub\ftproot
Everyone read-only and run
C:\Windows
Administrators All
Creator owner
Not inherited.
Subfolders and files only
Completely
Power Users
Modify, read and run, List folder directories, read, write
System All
IIS_WPG reads and runs, lists folder directories, reads
Users Read and run (this permission can be canceled when the final adjustment is complete)
C:\WINDOWS\Microsoft.Net
Administrators All
Creator owner
Not inherited.
Subfolders and files only
Completely
Power Users
Modify, read and run, List folder directories, read, write
System All
Users Read and run, List folder directories, read
' Www.knowsky.com
C:\WINDOWS\Microsoft.Net
Administrators All
Creator owner
Not inherited.
Subfolders and files only
Completely
Power Users
Modify, read and run, List folder directories, read, write
System All
Users Read and run, List folder directories, read

C:\WINDOWS\Microsoft.Net\temporary asp.net Files
Administrators All
Creator owner
Not inherited.
Subfolders and files only
Completely
Power Users
Modify, read and run, List folder directories, read, write
System All
Users All

C:\Program Files
Everyone only has this folder
Not inherited.
List Folder/Read data
Administrators All
IIS_WPG only This folder
List files/Read data
Read properties
Read Extended Properties
Read permissions

C:\Windows\Temp
Administrator All rights
System Full Permissions
Users All rights
C:\Program Files\Common Files
Administrators All
Creator owner
Not inherited.
Subfolders and files only
Completely
Power Users
Modify, read and run, List folder directories, read, write
System All
TERMINAL SERVER Users (if you have this user)
Modify, read and run, List folder directories, read, write
Users Read and run, List folder directories, read
C:\Program Files\dimac (If you have this directory)
Everyone reads and runs, lists folder directories, reads
Administrators All
C:\Program Files\complus Applications (if any)
Administrators All
C:\Program FILES\GFLSDK (if any)
Administrators All
Creator owner
Not inherited.
Subfolders and files only
Completely
Power Users
Modify, read and run, List folder directories, read, write
System All
TERMINAL SERVER Users
Modify, read and run, List folder directories, read, write
Users Read and run, List folder directories, read
Everyone reads and runs, lists folder directories, reads
C:\Program Files\installshield Installation Information (if any)
C:\Program files\internet Explorer (if available)
C:\Program files\netmeeting (if any)
Administrators All
C:\Program Files\Windowsupdate
Creator owner
Not inherited.
Subfolders and files only
Completely
Administrators All
Power Users
Modify, read and run, List folder directories, read, write
System All
C:\Program Files\Microsoft SQL (if SQL is installed in this directory)
Administrators All
Service All
System All
D:\ (If the user site content is placed in this section)
Administrators all permissions
D:\FreeHost (if this directory is used to place user site content)
Administrators all permissions
SERVICE Read and run

From a security perspective, we recommend that Webeasymail (Winwebmail) be installed on separate disks, such as E:
E:\ (if Webeasymail is installed on this disk)
Administrators all permissions
System Full Permissions
iusr_*, default Internet Guest account (or dedicated running user)
Read and run
E:\WebEasyMail (if Webeasymail is installed in this directory)
Administrators All
System Full Permissions
Service All
iusr_*, default Internet Guest account (or dedicated running user)
All permissions

C:\php\uploadtemp
C:\php\sessiondata
Everyone
All
C:\php\
Administrators All
System Full Permissions
Service All
Users read-only and run

C:\windows\php.ini
Administrators All
System Full Permissions
Service All
Users read-only and run
Preventing the users and processes of the ocean wood from the win server
Disable the penultimate Workstation service inside the service to prevent listing of users and services
Related Article

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.