I am a fanatical player in playing computers and like to mess around in the system if you have anything to do. I found that Win9X's registry contains a lot of important system information, and Windows' security and user permission settings are also included. So I went deep into the registry and after a period of exploration, I found some key points about security and user permission settings in the Win9X registry. I now tell you that the purpose is to give you a deeper understanding of the security of the registry and Win 9X system, so that everyone can better maintain system security.
1. Limit the control panel
1. Open the primary key in the registry [HKEY_USERS\"Username"\Software\Microsoft\Windows\CurrenVersion\Policies\System] ("Username" refers to the name of the corresponding user in a system where multiple users have been established. If multiple users are not established, it is ".Default"). If there are the following DWORD values, the corresponding control panel item of the user is prohibited:
"NoDispAppearancePage"=1 (disable the "Disp" property)
"NoDispBackgroundPage"=1 (Hide the Background page in the "Disk" property)
"NoDispCPL"=1 (Hide the Screen Saver page in the "Disk" property)
"NoDispScrSavPage"=1 (Hide the Appearance page in the "Display" property)
2. If the following DWORD values are available under [HKEY_USERS\Username\Software\Microsoft\Windows\CurrentVersion\Policies\Network], the corresponding control panel items for the user are restricted:
"NoNetSetup"=1 (disable the "Net" property)
"NoNetSetupIDPage"=1 (Hide the "Identification" page in the "Net" property)
"NoNetSetupSecurityPage"=1 (Hide the Access Control page in the "Net" property)
3. If the following DWORD values are available under [HKEY_USERS\Username\Software\Microsoft\Windows\CurrentVersion\Policies\System], the corresponding control panel items for the user are restricted:
"NoSecCPL"=1 (disable the "Password" property)
"NoPwdPage"=1 (Hide the Change Password page in the Password attribute)
"NoAdminPage"=1 (Hide the "Remote Management" page)
"NoProfilePage"=1 (Hide the User Profile page in the System property)
"NoDevMgrPage"=1 (Hide the Device Management page in the "System" attribute)
"NoConfigPage"=1 (Hide the Hardware Configuration File page in the "System" property)
"NoFileSysPage"=1 (Hide the "File System" button in the "System" property "Performance" page)
"NoVirtMemPage"=1 (Hide the "Virtual Memory" button in the "System" property "Performance" page)
2. Restrict the start menu
If under [HKEY_USERS\"Username"\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]
When the DWORD value "NoRun" = 1, the "Run" command in the start menu of the user is disabled;
If there is a DWORD value "NoSetFolders"=1, the "Set\Folder Options" command in the user's start menu is disabled; if there is a DWORD value "NoSetTaskbar"=1, the "Set\Taskbar and Start Menu" command in the user's start menu is disabled;
If there is a DWORD value "NoFind" = 1, the "Find" command in the start menu of the user is disabled;
If there is a DWORD value "NoStartMenuSubFolders"=1, the subfolder in the user's Start menu is hidden;
If there is a DWORD value "NoClose" = 1, the "Close System" command in the start menu of the user is disabled;
3. Network and user settings
1. If there is a DWORD value "NoDrives" = 1 under [HKEY_USERS\"Username"\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer], all drives in the user "My Computer" are hidden;
If there is a DWORD value "NoNetHooD" = 1, the user's "online neighbor" is hidden;
If there is a DWORD value "NoEntioeNetwork" = 1, the "whole network" in the user's "online neighbor" is hidden;
If there is a string value "NoWorkgroupContents" = 1, the workgroup directory in the user's "Online Neighbor" is hidden;
If there is a DWORD value "NoDesktop" = 1, all program groups on the user's desktop are hidden (that is, there is no desktop);
If the DWORD value "NoSaveSettings" = 1, the settings made by the user when he exits the system will not be saved.
2. Dial-up networking and sharing settings:
Create the following DWORD value under [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Network], and the corresponding restrictions are valid:
"NoDialIn"=1 (Dial in is prohibited)
"NoFileSharing"=1 (disable file sharing)
3. Run only a list of allowed Windows programs:
If there is a primary key "RestrictRun" under [HKEY_USERS\"Username"\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer], the string value below represents a list of Windows programs that are allowed to run only by the user.
4. Password setting
Create the following DWORD value under [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Network], and the corresponding settings are valid:
"HideSharePwds" = 1 (Hide the shared password with the asterisk (*))
"DisablePwdCaching"=1 (Disable password caching; note! Please use this setting with caution. At this time, the password cannot be changed in the "Password" property in the control panel. When logging in, the user can log in with any password or without a password.)
"AlphanumPwds" = 1 (make the Windows password must be numerals and letters)
"MinPwdLen"=n (set the minimum length of Windows password, n is greater than or equal to 0 is less than or equal to 8)
5. Disable the Registry Editor
[HKEY_USERS\"Username"\Software\Microsoft\Windows\CurrentVersion\Policies\System\] If there is a DWORD value "DisableRegstryTools"=1, the user is prohibited from using the registry editing tool.
6. Disable "MSDOS" mode and disable MSDOS applications in single mode
[HKEY_USERS\'Username'\Software\Microsoft\Windows\CurrentVersion\Policies\System] If there is a primary key "WinOldApp" and a DWORD value "Disabled" = 1, the user's "MSDOS" mode is prohibited; if there is a DWORD value "NoRealMode" = 1 under "WinOldApp", the user's single mode MSDOS application is disabled.
7. Self-start program
[HKEY_LOCAL_MACHINE\SOFTWARE\Mic rosoft\Windows\CurrentVersion\Run]The string value under it represents a program that is automatically started through the registry;
[HKEY_LOCAL_MACHINE\SOFTWARE\Mic rosoft\Windows\CurrentVersion\RunOnce]The string value below indicates that the program that is only started once;
[HKEY_LOCAL_MACHINE\SOFTWARE\Mic rosoft\Windows\CurrentVersion\RunServices]The string value under it represents a service program that is automatically started through the registry;
[HKEY_LOCAL_MACHINE\SOFTWARE\Mic rosoft\Windows\CurrentVersion\RunServicesOnce]The string value under it indicates that the service program is started only once.
From this, we can see that all the DWORD values above, if their value is "1", it means that the value is valid, and if its value is "0", it means that the value is invalid; we can easily make the corresponding restrictions valid or invalid by changing the DWORD value or deleting the DWORD. (Source: Free Good World Electronic Magazine)