The word security is essential for any operating system, and only if the security of the system is guaranteed, the system can run unimpeded. So in the xp system, how can we do the security protection of the system that everyone is highly respected? Let's study it together.
1.General security protection
The so-called regular security protection is the same as the Windows 98 installation of anti-virus software, upgrade system, prohibit Ping three security methods. It should be emphasized that Windows XP and its predecessor, Windows 2000, have numerous loopholes. The upgrade of the system cannot be as sloppy as Windows98. In addition to installing Microsoft's vulnerability patch for shockwave, it is recommended to upgrade WindowsXP to the latest ServicePack1 (it will be upgraded after upgrade). Resource possession, but security and stability have improved).
2. Disabling Remote Assistance, Shielding Idle Ports
There is a feature called Remote Assistance on Windows XP that allows users to send messages to friends on MSN when they have difficulty using the computer. Remote assistance invitations to help solve problems yourself.
And this remote assistance function is the representation of the RPC (RemoteProcedureCall) service that the Blaster virus attacks on Windows XP. Users are advised not to use this feature, and should also install the RPC vulnerability tool and shockwave immunization program provided by Microsoft before use. The method for disabling remote assistance is to open the System Properties dialog box (right-click on My Computer, Properties) and remove the remote item from the front of the remote assistance invitation.
The port can be restricted using the system's own TCP/IP filtering service. The method is as follows: Right click on the network connection, select Properties, open the Network Connection Properties dialog box, select the Internet Protocol (TCP/IP) in the General tab and click the [Properties] button below to configure the Internet Protocol (TCP). /IP) Properties window, click the [Advanced] button below, select the option item in the pop-up advanced TCP/IP settings window, click the [Properties] button below, and finally pop up the TCP/IP filtering window, through the window Only allow radio buttons, add ports allowed by network protocols such as TCP, UDP, and IP. If you do not provide various services, you can block all ports. This is the best form of security.
3. Disabling Terminal Services Remote Control
Terminal Services is a form of service that Windows XP has left over on Windows 2000 systems (Windows 2000 uses this service for remote server hosting). Users can use the terminal to achieve remote control. Terminal services and remote assistance are different. Although they all implement remote control, terminal services pay more attention to the user's login management rights. Each connection requires a specific login ID of the current system and is isolated from each other. Terminal services are provided. Independent of the invitation of the current computer user, you can log in to the remote computer independently and freely.
In Windows XP, Terminal Services is opened by default (Windows 2000 system needs to install the corresponding components to open and use Terminal Services). That is, if someone knows a user login on your computer ID, and know the IP of the computer, it can completely control your computer.
The method of turning off Terminal Services in Windows XP system is as follows: Right-click to select my computer, properties, select remote items, and remove the user to remotely connect to the front of this computer.
4. Turn off the Messenger service
The Messenger service is a communication component that Microsoft integrates into Windows XP system. It is also opened by default. When using it to send information, as long as you know the IP of the other party, and then enter the text, the corresponding text message window will pop up on the other party's desktop, and will be accepted if the Messenger service is not closed.
Many users don't know how to turn it off, but they are harassed by information. In fact, the method is very simple, enter the control panel, select the management tool, start the service item inside, then right click on the Messenger item and select Stop.
5. Prevent IPC default sharing
Windows XP allows any user to get all account and share lists of the system through the empty user connection (IPC$) after the default installation. This is originally for the convenience of LAN users. Resources and files, but any remote user can use this empty connection to get your list of users. Hackers use this feature to find a list of users on the system and use some dictionary tools to attack the system. This is the more popular IPC attack on the Internet.
To prevent IPC attacks, you should start with the default configuration of the system. You can make up the vulnerability by modifying the registry:
Step 1: Set the RestrictAnonymous item of HKEY_LOCAL_MacHINESYSTEMCurrentControlSetControlLSA to 1, you can disable the space. User connection.
Step 2: Open the HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesLanmanServerParameters entry in the registry.
For the server, add the key value AutoShareServer, type REG_Dword, with a value of 0.
For the client, add the key value AutoShareWks, type REG_DWORD, with a value of 0.
6. Rational Management Administrator
Windows2000/XP system, after installation, the system will create an Administrator user by default, which has the highest management authority of the computer. Some users did not set a password for the Administrator user at the time of installation. Hackers use this to log in to the other computer using an advanced user. Therefore, individual users should properly keep the Administrator user information. When Windows 2000 logs in, it is required to enter the login password of the Administrator user. After Windows XP starts normally, the Administrator user cannot be seen. It is recommended that users using Windows XP enter the security mode and then control. Add a password to the Administrator user in the user account of the panel, or delete it to avoid hidden dangers.
A powerful system requires multiple security settings to protect it. Only in a secure system environment, users can use it with confidence, and hesitate whether their xp system is safe enough. Just try it.
Broadband connection is the basis of dial-up Internet access. You can either use a
Windows Media Player is the free player that comes with the WinXP system. It can al
In the WinXP system, many users need to use the printer. To use the printer, you must first install
WinX system operation, when connecting to the network prompts error code 624, many people do not und
Practical is the best! xp use skills to share
What should I do if the startup speed is very slow after installing the system?
XP system w3wp.exe process CPU usage 100% of the reasons and solutions
Not familiar with the latest operating skills of windows xp system _ registry tutorial
Notepad alternatives Tips for writing Weibo
WinXP system prompts "Access Violation At Address" solution
Rookie buy computer must read carefully these misunderstandings
WinXP Remote Assistance prompts HelpAssistant account error how to fix?
WinXP system VPN error 633 "Modem is already in use" What should I do?
Analysis of virtual memory and virtual storage in computers
XP system, my computer address bar is missing, how to get back? How to display the address bar
What should I do if there is no thumbnail when switching windows under Win8?
How to set up a new tab in the current window of IE browser to open links to other programs
Don't want to be nostalgic! Don't want to be yellowed! Win8 view pictures What is this?
What to do if the super taskbar cannot lock the icon
After upgrading Win10 Mobile Preview 10581, start the screen screen solution