Securing win2k

Printable View

June 17th, 2002, 12:30 PM
trials

Securing win2k

Im goin to reinstall win2k has anyone got any tips on how to secure it and make it safe and do you know what firewall and antivirus are best to use. thanx trials
June 17th, 2002, 12:47 PM
bello

yeah why not.
http://www.antionline.com/showthread...hreadid=219446
June 17th, 2002, 12:50 PM
pwaring

Instead of installing everything and then locking down what you don't need, instead only install what you do need. If you're not going to run a web server, don't install IIS in the first place rather than installing and then trying to secure it. If a service isn't running or even installed, no-one can exploit it.
June 17th, 2002, 12:54 PM
LegacyBoy

Hey,

Another cool trick is to open the MMC and change the name of the administrator account,
It works great and is really simple.

-=Legacy Boy=-
What do you mean that they got more then 2400 kb out of a phone line!
Thats impossible
June 18th, 2002, 01:05 AM
a_420_hacker_24

I have just taken a security class for win 2000 and the best thing to do is install linux....but if you must have windows and i did I installed it with just the bare bones and updated it.And do all that stuff that peeps before me said.Run a firewall turm of file and print sharing, run adudits on failed logons, and keep all software updated.
June 18th, 2002, 01:27 AM
Leviatan

make sure you also install the most recent service packs (auto update) and visit www.ntfaq.com on a weekly basis to stay up to date with the latest NT security/performance problems
June 18th, 2002, 06:17 PM
trials

Thanx for your help ppl. i agree linux is more secure i duel boot with mandrake but still need windows for college and no one else in my family can use it that well.
June 18th, 2002, 08:03 PM
nebulus200

Folllowing the adage of turning off what you don't need, I thought this site was pretty informative:

http://www.blkviper.com/WIN2K/win2kservice411.htm

Gives a complete list of Win2K services, what they are, if they can be disabled, and if so, what effect disabling the service will have...hard to crack a service that ain't runnin...

And as always with Micro$oft, patch, reboot, patch, reboot, patch, reboot, ... ad nauseum
July 12th, 2002, 03:41 AM
Fakeboy

There is a guide to securing Windows 2000 on the NSA website.

www.NSA.gov.

This guide is implemented throughout all government & government contractors networks.
August 3rd, 2002, 07:34 PM
DBEAUCHAMP

You can use the MBSA (Microsoft Baseline Security Analyzer) to make sure you have all the latest security fix on you win2k box. It will also help you on little stuff you can set manualy.

Also, I've been using the Xteq Systems X-Setup (http://www.xteq.com ). It is a GUI apps that helps you go through all kind of manual settings to secure your win2k box - a very good tool that I suggest to anyone !

By the way, changing the administrator account to something is a standard thing to do. After you renamed it, create a new dummy account with no-access with the name "Administrator". So, it will just make any hackers go crazy and/or waste THEIR time for a change !

And always remember that you'll never gonna be able to secure everything on Windows OS. Like someone said in the past: In windows, it's not a bug, it's a feature !