Ten services that Windows XP must disable to make your computer more secure

1, Terminal Services allows multiple users to connect and control a single machine, and display desktops and applications on remote computers. If you don't use the remote control feature of Windows XP, you can disable it.

2, Remote Registry enables remote users to modify the registry settings on this computer. The registry can be said to be the core content of the system. Generally, users do not recommend changing it themselves, let alone others to modify it remotely, so this service is extremely dangerous.

3, Fast User Switching Compatibility Provides management for applications that need assistance under multiple users. Windows XP allows fast switching between multiple users on a single computer, but this feature has a vulnerability. When you click "Start → Logout → Fast Switch", you can enter a username repeatedly in the traditional login mode. The system will consider brute force and lock all non-administrator accounts. If you don't use it often, you can disable it. Or cancel "Use Fast User Switching" in "Control Panel → User Accounts → Change User Login or Logout Mode".

4, Telnet allows remote users to log in to this computer and run programs, and supports a variety of TCP /IP Telnet clients, including UNIX and Windows-based computers. Another dangerous service, if started, remote users can log in, access local programs, and even use it to modify network settings such as your ADSL Modem. Unless you are a network professional or your computer is not being used as a server, be sure to disable it.

5. NetMeeting Remote Desktop Sharing allows authorized users to access each other on the network via NetMeeting. This service is not very useful for most individual users, and the opening of the service will also bring security problems, because the service will send the user name in clear text to the client connecting it, and the hacker's sniffing program is very These account information can be easily detected.

6, Universal Plug and Play Device Host This service is for general-purpose plug and play devices. There is a security hole in this service, and computers running this service are vulnerable. An attacker who sends a fake UDP packet to a network with multiple Windows XP systems may cause these Windows XP hosts to attack the specified host (DDoS). In addition, if you send a UDP packet to the system 1900 port, and the address of the "Location" field points to the chargen port of another system, it may cause the system to enter an infinite loop and consume all the resources of the system (you need to manually install the hardware). Open).

7, Messenger Commonly known as messenger service, computer users can use it for data exchange in the LAN (transfer Net Send and Alerter service messages between client and server, this service has nothing to do with Windows Messenger. If the service stops , Alerter message will not be transmitted). This is a dangerous and annoying service. The Messenger service is basically used in the enterprise's network management, but spammers and spammers often use the service to post pop-up ads under the heading "message service." And this service has loopholes, and MSBlast and Slammer viruses use it for rapid propagation.

8. Performance Logs And Alerts collects performance data from local or remote computers based on pre-configured schedule parameters and then writes this data to a log or triggers an alert. In order to prevent data from being searched by remote computers, it is strictly prohibited.

9. Remote Desktop Help Session Manager If this service is terminated, Remote Assistance will not be available. 10, TCP /IP NetBIOS Helper NetBIOS is often used to attack under Win 9X, for users who do not need file and print sharing, this can also be disabled