Windows 2003 is becoming more and more popular among users for its stable performance, but in the face of endless new viruses, it is still necessary to strengthen the security of Windows 2003.
1. User password settings
Setting a key password can largely avoid password attacks. The character length set by the password should be more than 8, preferably a combination of letters, numbers, and special characters, such as "psp53,@pq", "skdfksadf10@", etc., which can effectively prevent brute-force cracking. It is best not to use your birthday, mobile phone number, phone number, etc. as passwords.
2. Delete the default share
Click "Start → Run", enter "" and press Enter to open the Group Policy Editor. Expand "User Configuration → Windows Settings → Scripts (Login/Login)" in turn, double-click the login item, and then add "" (the parameters do not need to be added), thereby deleting the default share of Windows 2003.
Next, disable the IPC connection: Open the Registry Editor and expand [HKEY_
LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa ] branch, find the "restrictanonymous" subkey in the right window, and change its value to "1".
3. Turn off the automatic playback function
The automatic playback function not only works on the optical drive, but also on other drives, so it is easy to be exploited by hackers to execute hacker programs.
Open the Group Policy Editor, expand "Computer Configuration → Administrative Templates → System", find the "Close AutoPlay" option in the right window and double-click, select "Enabled" in the dialog box that opens, and then select "All Drives" in the drop-down menu after "Close AutoPlay", and press "OK" to take effect.
4. Clear the remotely accessible registry path
Setting the remotely accessible registry path to empty can effectively prevent hackers from using the scanner to read the computer's system information and other information through the remote registry.
Open the Group Policy Editor, expand "Computer Configuration → Windows Settings → Security Settings → Security Options", and find "Network Access: Remote Access Registry Path" in the window on the right, and then delete all the remotely accessible registry paths and sub-path contents in the window as shown in the figure that opens. Four tricks to enhance Windows 2003 security
1. User password settings
Setting a key password can largely avoid password attacks. The character length set by the password should be more than 8, preferably a combination of letters, numbers, and special characters, such as "psp53,@pq", "skdfksadf10@", etc., which can effectively prevent brute-force cracking. It is best not to use your birthday, mobile phone number, phone number, etc. as passwords.
2. Delete the default share
Click "Start → Run", enter "" and press Enter to open the Group Policy Editor. Expand "User Configuration → Windows Settings → Scripts (Login/Login)" in turn, double-click the login item, and then add "" (the parameters do not need to be added), thereby deleting the default share of Windows 2003.
Next, disable the IPC connection: Open the Registry Editor and expand [HKEY_
LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa ] branch, find the "restrictanonymous" subkey in the right window, and change its value to "1".
3. Turn off the automatic playback function
The automatic playback function not only works on the optical drive, but also on other drives, so it is easy to be exploited by hackers to execute hacker programs.
Open the Group Policy Editor, expand "Computer Configuration → Administrative Templates → System", find the "Close AutoPlay" option in the right window and double-click, select "Enabled" in the dialog box that opens, and then select "All Drives" in the drop-down menu after "Close AutoPlay", and press "OK" to take effect.
4. Clear the remotely accessible registry path
Setting the remotely accessible registry path to empty can effectively prevent hackers from using the scanner to read the computer's system information and other information through the remote registry.
Open the Group Policy Editor, expand "Computer Configuration → Windows Settings → Security Settings → Security Options", and find "Network Access: Remote Access Registry Path" in the window on the right, and then delete all the remotely accessible registry paths and sub-path contents in the window as shown in the figure that opens. Four tricks to enhance Windows 2003 security