Hacking can exploit a specific vulnerability, and the exploitation of certain vulnerabilities will occur at the same time. Hackers can also take advantage of some misconfiguration of system components or early backdoors. In view of this, defend against hackers. Not an easy thing, especially for an unskilled user.
When surfing the Internet, I often find that my network firewall is constantly alerting. Experts tell you that this may be a hacker attack. Is there any way to get rid of these unsolicited hackers?
One, cancel the folder hidden share
If you use Windows 2000/XP system, right click on the C drive or other disk, select share, You will be amazed to find that it has been set to “Share this folder", but you can't see it in "Network Neighborhood", what's the matter?
Originally, in the default state Next, Windows 2000/XP will open the hidden share of all partitions. From the “Control Panel/Administrative Tools/Computer Management” window, select “System Tools/Shared Folders/Shares” to see the hard disk. Each partition name is followed by a “$”. But as long as you type "computer name or IPC$", the system will ask for the username and password. Unfortunately, most individual user system administrator passwords are empty, and the intruder can easily see the contents of the C drive. It brings great hidden dangers to network security.
How to eliminate the default share? The method is very simple, open the registry editor, go to
“HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControl\\
SetSevices\\Lanman\\workstation\\parameters”
Create a new name “AutoShareWKs” double-byte value, and set its value to “0”, then restart the computer, so the sharing is canceled.
Second, reject malicious code
Malicious web pages have become one of the biggest threats to broadband. I used Modem before, because the speed of opening a webpage is slow, and the malicious webpage is closed before it is completely opened, and the possibility of avoiding the trick is avoided. Now that broadband is so fast, it is easy to be attacked by malicious web pages.
General malicious web pages are destructive because they are added with malicious code. These malicious code is equivalent to some small programs, as long as the page is opened, it will be run. So to avoid malicious web attacks, just disable the running of these malicious code.
Run Internet Explorer, click on <;Tools/Internet Options/Security/Custom Level", and define the security level as "Security Level-High", for "ActiveX Controls and Plugins" 3 items are set to “Disable”, other items are set to “ prompt”, then click “OK”. After this setting, when you use IE to browse the web, you can effectively avoid malicious code attacks on malicious web pages.
Three, the hacker's "back door"
As the saying goes, "No wind and no waves", since the hacker can enter, it means that the system must exist for them to open the "back door", as long as the back door is blocked Let the hacker have nowhere to start, there is no worries!
1. Delete unnecessary protocols
For the server and the host, generally only the TCP/IP protocol is enough. Right click on the “Network Neighborhood” and select “Attributes”, then right click on “Local Area Connection” and select “Attributes” to uninstall unnecessary protocols. NETBIOS is the root cause of many security flaws. For hosts that do not need to provide file and print sharing, you can also disable NETBIOS bound to TCP/IP protocol to avoid attacks against NETBIOS. Select “TCP/IP Protocol/Properties/Advanced", go to the “Advanced TCP/IP Settings” dialog box, select the “WINS” tab, check ““Disable NETBIOS on TCP/IP” and close it. NETBIOS.
2. Close "File and Print Sharing" file and print sharing should be a very useful feature, but it is also a good security hole for hacking when it is not needed. So in case there is no need to "file and print share", we can turn it off. Right-click on “Network Neighborhood>, select “Properties", and then click the <quo;File and Print Sharing" button to bring up the two checksums in the <quo;File and Print Sharing” dialog box that pops up. The hook in the box can be removed.
Although "File and Print Sharing" was closed, it was not secure, and the registry was modified to prevent it from changing "File and Print Sharing". Open the registry editor and select
“HKEY_CURRENT_USER\\Software\\Microsoft\\
Windows\\CurrentVersion\\Policies\\NetWork”
Primary key, under the primary key, create a new DWORD type key, the key name is &ldquo ; NoFileSharingControl”, the key value is set to “1” indicates that this function is disabled, so as to prohibit the change of "file and print sharing" purpose; the key value is "“0”" indicates that this function is allowed. This will disappear in the "Network Neighborhood" Properties” dialog box & "File and Print Sharing".