Windows Administration How to protect your computer
Issues Installation Operation
Installation Don‘t forget to set a password for the administrator account In order to prevent any unallowed access during installation the „setting- up network“ step could be skipped. Skip installing the other needed internet related services. Web (IIS) Server, FTP Server, SMTP Server...
Installation Why? Skipping some steps will speed up the installation Not installing the vulnerable parts will prevent any „hack“ before finishing the installation.
Right after installation Disable the default shared directories or disable write acces to them. Leave the simple file sharing disabled (XP Home - Problem) Create a new restricted user for normal usage of the computer, use the administrator account only for „administration“!
Right after installation Install all the service packs and the patches available from Microsoft. (Windows update) Install an anti-virus software Install a personal firewall software or activate the built-in firewall (ICF – internet connection firewall)
Right after installation Continue installing the rest of the software packets needed. (Also IIS, FTP...) A good ideea: after finishing the installation make a system back-up for being able later to repair a broken system.
Operation – User rights A more restricted user will protect the computer from you and from the rest… For tasks that need higher permissions you can always use „fast-switch“ to logon as administrator and accomplish the task without logging off.
Operation – User rights tuning Edit policies for different users. i.e. make a user for file sharing and grant only this right. Create user groups – don‘t set policies on simple users.
Operation – wrong defaults Enable the showing of known file extensions Default shared directories. Leave Guest account disabled Speed tuning – background picture, menu animations, window animations...
Operation – Don‘t s Connect using telnet Connect using standard ftp Problems Logging on public computers Using eBanking on public computers
Operation – Protect Privacy Internet explorer – History, Temporary Internet Files Cookies? Explorer – Recent Documents List Recycle Bin + Software Shredder
Operation – Nice Features Internet Connection Firewall Internet Connection Sharing
Operation – Fine tuning Stop: Alerter, Automatic Updates, Background Transfer, ClipBook, Computer Browser, DHCP Client, Human Interfaces Devices, Help and Support, IIS, FTP, Indexing Service, Messenger, Net Meeting, DDE, SMTP, Themes...
Operation – Hacker attack? Save Log Files Try to identify the malicious user Stop the malicious software Ensure the software won‘t start at a next start of the computer.