14 strokes security settings to prevent hacker attacks (2)

13, delete the default share

Someone asked me to share all the disks as soon as I booted up, after changing back, the restart has become a share of what is going on, this is the default share set by 2K for management. , it must be canceled by modifying the registry manner:

HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesLanmanServer

Parameters: AutoShareServer REG_DWORD type can change the value to 0.

14. Disabling LanManager Authentication

Windows NT Servers Service Pack 4 and subsequent versions support three different authentication methods: LanManager (LM) authentication; Windows NT (also called NTLM) authentication; Windows NT Version 2.0 (also known as NTLM2) authentication;

By default, LM authentication occurs when a client attempts to connect to a server that supports both LM and NTLM authentication methods Will be used first. Therefore, it is recommended to disable the LM authentication method.

1. Open the Registry Editor;

2. Navigate to HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlLsa;

3. Select the menu "Edit", "Add Value";

4. Enter the value in the name: LMCompatibilityLevel, the value type is: DWORD, click OK;

5. Double-click the newly created data and set the following values ​​as appropriate:

0 - Send LM and NTLM responses;

1 - Send LM and NTLM responses;

2 - Send NTLM responses only;

3 - Send only NTLMv2 responses; (Windows 2000 is valid)

4 - Send NTLMv2 response only, reject LM; (Windows 2000 is valid)

5 - Send only NTLMv2 response, reject LM and NTLM; (Windows 2000 is valid)

6. Close the Registry Editor;

7. Restart the machine.