For the term hacker, I believe that netizens who often deal with the Internet will not be unfamiliar. Some people even have dealt with hackers. So what about hacking? We may wish to use the following nine computer security settings, which can effectively avoid most hacking behavior. These are also enhanced security settings that many servers will perform. If you have some privacy or important data on your computer, it is best to strengthen the security settings. First, the computer settings 1. Turn off "file and print sharing" File and print sharing should be a very useful feature, but when it is not needed, it is also a good security hole for hacking. So in the absence of "file and print sharing", we can turn it off. Right-click on "Network Neighborhood", select "Properties", and then click the "File and Print Sharing" button to remove the hooks from the two check boxes in the "File and Print Sharing" dialog box that pops up. Although "File and Print Sharing" is turned off, it is not guaranteed to be secure, and the registry is also modified to prevent it from changing "File and Print Sharing". Open the registry editor, select the "HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionPolicIEsNetWork" primary key, create a new DWord type key under the primary key, the key name is "NoFileSharingControl", the key value is set to "1" to prohibit this function, thus prohibiting the change of the file And the purpose of sharing with printing; a key value of "0" indicates that this function is allowed. This way, "File and Print Sharing" disappears in the "Network Neighborhood" Properties dialog box. 2. Disable the Guest account There are many intrusions to obtain administrator passwords or permissions through this account. If you don't want to give your computer a toy, it's forbidden. Open the Control Panel, double-click User and Password, click the Advanced tab, and then click the Advanced button to bring up the Local Users and Groups window. Right click on the Guest account, select Properties, and select "Account is disabled" on the "General" page. In addition, changing the name of the Administrator account can prevent hackers from knowing their own administrator account, which will largely guarantee the security of the computer. 3. Prohibit the establishment of an empty connection By default, any user can connect to the server through an empty connection, enumerate the account and guess the password. Therefore, we must prohibit the establishment of an empty connection. The method is to modify the registry: open the registry "HKEY_LOCAL_MacHINESystemCurrentControlSetControlLSA", and change the key value of the DWord value "RestrictAnonymous" to "1". Second, install the necessary security software We should also install and use the necessary anti-black software in the computer, anti-virus software and firewall are essential. Open them when you are online, so even if a hacker attacks our security, it is guaranteed. It is recommended that everyone install mainstream anti-virus software, such as 360 or Jinshan. Closing Unnecessary Ports Hackers often scan your computer port during an intrusion. If a port monitor (such as Netwatch) is installed, the monitor will have a warning. If you encounter such an intrusion, you can use the utility software to close the unused port. 4. Don't go back to the stranger's mail. Some hackers may pretend to be the names of some regular websites, and then make a sounding reason to send a letter to the user name and password that you are asked to enter online. If you press "OK", you The account number and password entered the hacker's mailbox. So don't just go back to the stranger's mail, even if he says it will be tempting and tempting. V. Changing the Administrator Account The Administrator account has the highest system privileges. Once the account is used, the consequences are unimaginable. One of the common ways to hack is to try to get the password for the Administrator account, so we have to reconfigure the Administrator account. The first is to set a strong and complex password for the Administrator account, then we rename the Administrator account, and then create an Administrator account without administrator privileges to deceive the intruder. In this way, it is difficult for an intruder to figure out which account actually has administrator privileges, which reduces the risk to a certain extent. 6. Hidden IP Addresses Hackers often use some network detection technology to view our host information. The main purpose is to get the IP address of the host in the network. IP address is a very important concept in network security. If an attacker knows your IP address and is ready for his attack, he can launch various attacks on this IP, such as DOS (Denial of Service) attacks. , Floop overflow attacks, etc. The primary method of hiding an IP address is to use a proxy server. Compared with directly connecting to the Internet, the use of a proxy server can protect the IP address of Internet users, thus ensuring Internet security. The principle of the proxy server is to set up a "transit station" between the client (the computer that the user accesses the Internet) and the remote server (such as the user wants to access the remote WWW server). When the client requests the service from the remote server, the proxy server first The user's request is intercepted, and then the proxy server forwards the service request to the remote server, thereby enabling the connection between the client and the remote server. Obviously, after using the proxy server, other users can only detect the IP address of the proxy server instead of the IP address of the user. This achieves the purpose of hiding the user's IP address and ensuring the security of the user's Internet. There are many websites that offer free proxy servers, and you can also find them yourself with tools such as proxy hunters. Seven, prevent Trojans Trojans will steal useful information from the embedded computer, so we must also prevent hackers from implanting Trojans, commonly used methods are: 1, when downloading files first placed in their new folder , and then use anti-virus software to detect, play a role in early prevention. 2. In the "Start" → "Programs" → "Start" or "Start" → "Programs" → "Startup" options to see if there are any unknown operating items, if any, delete. Delete all suspicious programs prefixed with "Run" under HKEY_LOCAL_MacHINESOFTWAREMicrosoftWindowsCurrentVersionRun in the registry. Eight, to prevent the invasion of the Guest account Guest account is the so-called guest account, it can access the computer, but is restricted. Unfortunately, Guest has also opened the door for hacking! There are many articles on the Internet that describe how to use the Guest user to get administrator privileges, so you should put an end to the system invasion based on the Guest account. Disabling or completely removing the Guest account is the best way, but in some cases where you must use the Guest account, you need to do some other defenses. First, give the Guest a strong password, and then set the Guest account access to the physical path in detail. For example, if you want to prevent Guest users from accessing the tool folder, you can right-click on the folder and select the "Security" tab in the pop-up menu, where you can see all the users who can access this folder. Just delete all users except the administrator. Or set the permissions for the corresponding users in the permissions, for example, only "list the folder directory" and "read", so it is much safer. Nine, do a good job of IE security settings ActiveX controls and Applets have strong features, but there are hidden dangers of being exploited. The malicious code in the web page is often a small program written with these controls, as long as the web page is opened, it will be run. Therefore, to avoid malicious webpage attacks, only the malicious code is prohibited from running. IE provides a variety of options for this. The specific setup steps are: "Tools" → "Internet Options" → "Security" → "Custom Level". It is recommended that you disable ActiveX controls and related options. There is nothing wrong with being cautious! In addition, in the security settings of IE, we can only set the Internet, local intranet, trusted sites, restricted sites. However, Microsoft hides the security settings of "My Computer" here. By modifying the registry to open this option, we can have more choices when dealing with ActiveX controls and applets, and generate more security for local computers. Great impact. Here are the specific methods: 1. Open “Run” in the “Start” menu and enter Regedit.exe in the “Run” dialog box that pops up. 2, open the registry editor, click on the "+" in front to expand to: HKEY_CURRE-NT_USERSoftwareMicrosoftWindowsCurrentVersionInternetSettings?ones 3, find the DWord value "Flags" in the right window, the default key value is hexadecimal 21 (decimal 33), double-click "Flags", 4, in the pop-up dialog box, change its key value to "1", close the registry editor. You don't need to restart your computer, re-open IE, click the "Tools → Internet Options → Security" tab again, you will see an additional "My Computer" icon, where you can set its security level. Set its security level higher, so that the defense is more strict. 5. Finally, it is recommended to patch your system. Microsoft patches are still very useful.