Windows Server Security experience

1. patch the system to the latest version

2. No software with vulnerabilities, such as Serv-U, Radmin, and pcAnywhere.Program

3. The fewer things that are installed on the server, the better. Remote Control is absolutely safe with only the built-in 3389. Do not trust and use the popular remote control software on the Internet!

4. Database Security
Delete MSSQL dangerous process
Bytes --------------------------------------------------------------------------------------------------------
The following describes how to delete dangerous stored procedures:
Delete dangerous stored procedures in MSSQL Code
The following operations do not affect other operations, but delete several dangerous stored procedures. We generally cannot use them too much! This is only a security configuration method for virtual host friends! If you have a single person, you don't have to do this for the enterprise. Sometimes these functions are also used a lot!
Drop procedure sp_makewebtask
Exec master .. sp_dropextendedproc xp_cmdshell
Exec master .. sp_dropextendedproc xp_dirtree
Exec master .. sp_dropextendedproc xp_fileexist
Exec master .. sp_dropextendedproc xp_terminate_process
Exec master .. sp_dropextendedproc sp_oamethod
Exec master .. sp_dropextendedproc sp_oacreate
Exec master .. sp_dropextendedproc xp_regaddmultistring
Exec master .. sp_dropextendedproc xp_regdeletekey
Exec master .. sp_dropextendedproc xp_regdeletevalue
Exec master .. sp_dropextendedproc xp_regenumkeys
Exec master .. sp_dropextendedproc xp_regenumvalues
Exec master .. sp_dropextendedproc sp_add_job
Exec master .. sp_dropextendedproc sp_addtask
Exec master .. sp_dropextendedproc xp_regread
Exec master .. sp_dropextendedproc xp_regwrite
Exec master .. sp_dropextendedproc xp_readwebtask
Exec master .. sp_dropextendedproc xp_makewebtask
Exec master .. sp_dropextendedproc xp_regremovemultistring
Run in the query analyzer.
Bytes --------------------------------------------------------------------------------------------------------
MySQL versions earlier than 5.0 are not recommended!

5. install and use the software properly!
Recommended combination: [server security configurator + website Trojan cleaning expert + Mai Coffee 8.7i]
Download common server tools, qingcloud collection, and download as soon as necessary!
Http://s.jb51.net
6.Disable system dangerous components and reasonably set Server System and website permissions. You can use the software you write, and you can also do it yourself!

PS: the website permission settings on the server should not show everyone and users

[Original software] free version of server security configurator:
Http://www.jb51.net/softs/12762.html
[Original software] The free version of website Trojan cleaning expert free2009 is officially released. Download and try it!
Http://www.jb51.net/softs/12771.html
This is an original tutorial on IIS multi-site user isolation!
Http://www.jb51.net/article/17751.htm
No, go to study, protect your website security, and be unaffected by other websites!

7.Do not run any software or programs on the server that you have never used or understood, or open any webpages that you have not opened or understood on the server!

8. Communicate with experienced friends and learn more about security technologies and knowledge!