Just when you surf the Internet, do you think of it? Various potential threats may come at any time. For network viruses, hacking tools are more important, and the losses are relatively small. However, many default settings used by Windows XP to improve usability are ignored. In fact, the default settings of the system are not safe. Instead, it adds more risks to us. How can I minimize the security risks of Windows XP? Let's take a look!
1,
simple file sharing to allow users on your network just a few clicks of the mouse can file sharing, Windows XP added a feature called "Simple File Sharing" But also opened many NetBiOS vulnerabilities. To turn off the simple file sharing function, open "My Computer", select the menu "Tools" → "Folder Options", click "View", and cancel "Use Simple File Sharing (Recommended)" in "Advanced Settings". Figure
a
2, FAT32 partition
you think you install all the patches is very safe? The FAT32 partition you use is a security risk. After all, the security and stability of Microsoft's new system are based on the NTFS partition. In order to improve security, we need to convert the FAT32 file system to NTFS. NTFS allows for more complete control over the permissions of files and folders, and can also use the Encrypting File System (EFS) to ensure that data is not stolen from the file partition level. You can view the current file system of the drive by right-clicking on the drive in "My Computer" and selecting "Properties". If you want to convert the file system to NTFS, first back up the important files, then select the menu "Start" → "Run", enter "cmd", click "OK". Next, execute convert x:/fs:ntfs in the command line window (where x is the drive letter of the drive).
3, Guest account
Guest account so-called guest account, it can access the computer, but limited. Unfortunately, Guest has also opened the door for hacking. If you do not need to use the Guest account, it is best to disable it. In Win XP Pro, open "Control Panel" → "Administrative Tools" and click "Computer Management". In the list on the left, find "Local Users and Groups" and click on "Users". In the right pane, double-click on the Guest account and select "Account is disabled" (see Figure 2). The Win XP Home version does not allow us to disable the Guest account, but allows the password to be set for the Guest account: first execute the Net user guest passWord command in the command line environment, then enter the "Control Panel", "User Settings", set the password for the Guest account. .
Figure II
4, Administrator account
NT system has a built-in system administrator account Administrator, the account has the highest level of control over the entire system, we need to focus on. However, this account is hidden in Windows XP, and the password for this account is entered when the operating system is installed. Many people may not realize this, so they don't set a password for the Administrator account. In this case, as long as a malicious person can access your computer through the network or directly, your system and data are dangerous. . So if the account password is empty in your system, it is best to set a password for this account. In addition, we may not use the name "Administrator". Whether in Windows XP Home or Pro, it's a good idea to create another account with full privileges and then deactivate the Administrator account. Finally, don't forget to set up enough complex passwords for all your accounts. To disable the Administrator account, open Control Panel→Administrative Tools and click Computer Management. In the list on the left, find "Local Users and Groups" and click on "Users". In the right pane, double-click the Administrator account and select "Account is disabled" (see Figure 3).
Figure III
5, extra service
a user-friendly, Win XP default boot to not have to use a lot of services, but also opened the back door to invade the system. If you don't need these services, it's best to turn them off: NetMeeting Remote Desktop Sharing, Remote Desktop Help Session Manager, Remote Registry, Routing and Remote Access, SSDP Discovery Service, telnet, Universal Plug and Play Device Host.
Open "Control Panel" → "Administrative Tools" → "Services", you can see the description and running status of these services. To close a service, simply right-click on the service name and select the "Properties" menu. In the "General" tab, change the "Startup Type" to "Manual" and click the "Stop" button (see Figure 4).
Figure 4