About the prohibition method of ipc$ and delete the default share

The default share allows users to access your computer directly, but this can sometimes be risky, so sometimes you will find ways to delete both ipc$ and default share, so as not to worry about it, let me introduce it to you now. The way.

The following four methods can be referred to:

A. One way is to delete both ipc$ and default share. But there will be after the restart. This requires a change to the registry.

1, first delete the existing net share ipc$ /del net share admin$ /del net share c$ /del …………(some have a few deletes)

2, prohibit the establishment of an empty connection First run regedit, find the following primary key [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlLSA] Change the key value of RestrictAnonymous (DWORD) to: 00000001.

3, prohibit automatic opening of the default share

For the server version, find the following primary key [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesLanmanServerPara meters] to change the key value of AutoShareServer (DWORD) to: 000000000. For the pro version, [HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesLanmanServerParameters] changes the key value of Au toShareWks (DWORD) to: 00000000.

B, the other is to close the ipc$ and the default shared dependencies (not recommended) net stop lanmanserver There may be a prompt, the XXX service will also close or not. Because there are still some minor services that depend on lanmanserver. In general, press y to continue.

C, the easiest way is to set a complex password to prevent the password from being exhausted by ipc$. But if you have other vulnerabilities, ipc$ will facilitate further intrusions. D, there is another way to install a firewall, or port filtering.

There are a lot of methods. Just look at how you choose. You have to choose according to your own situation. You can try these methods and choose the most suitable method and the easiest way. I hope everyone. helpful.