Upcoming Events

Cloud Connect
Santa Clara
Feb 13-16, 2012

Cloud Connect brings together the entire cloud eco-system to better understand the transformation we're experiencing and promises to be the defining event of the cloud computing industry. Learn about the latest cloud technologies and platforms from thought leaders in Cloud Connect’s comprehensive conference.

Register Now!

More Events »

Subscribe to Newsletter

  • Keep up with all of the latest news and analysis on the fast-moving IT industry with Network Computing newsletters.
Sign Up

Vendor NewsFeed

More Vendor NewsFeed »
  W O R K S H O P
Securing Windows NT Server

April 3, 2000


Registry Tweeks
Issue Fix
Clear Last Login from console HKEY_LOCAL_MACHINE\SOFTWARE
\Microsoft\WindowsNT\CurrentVersion\WinLogin
Add Value: DontDisplayLastUserName
-DataType: REG_SZ
-String: 1
Add Legal Notice HKEY_LOCAL_MACHINE\SOFTWARE
\Microsoft\WindowsNT\CurrentVersion\WinLogin
Select: LegalNoticeCation and add appropriate text
Select: LegalNoticeText and add appropriate text
Disable NTFS 8.3 naming HKEY_LOCAL_MACHINE\SYSTEM
\CurrentControlSet\Control\FileSystem
Select: NtfsDsiable8dot3NameCreation
Select: REG_DWORD
-String: 1
Disable OS/2 & POSIX HKEY_LOCAL_MACHINE\SOFTWARE
\MicroSoft\OS/2 Subsystem for NT
Delete: all sub keys

HKEY_LOCAL_MACHINE\SYSTEM
\CurrentControlSet\Control\SessionManager\Environment
Delete: Os2LibPath

HKEY_LOCAL_MACHINE\SYSTEM
\CurrentControlSet\Control\Session Manager\SubSystems
Delete: Optional

HKEY_LOCAL_MACHINE\SYSTEM
\CurrentControlSet\Control\Session Manager\SubSystems
Delete entries for Posix and OS/2

Delete: os2.exe, os2srv.exe, os2ss.exe, posix.exe, psxss.exe (\winnt\system32\os2\?)
Remove Administrative Shares HKEY_LOCAL_MACHINE\SYSTEM
\CurrentControlSet\Services\LanmanServer\Parameters
Add Value: AutoShareServer
-REG_DWORD
-Value: 0
Restrict NULL (Anonymous) sessions HKEY_LOCAL_MACHINE\SYSTEM
\CurrentControlSet\Control\LSA
Add Value: RestrictAnonymous
-REG_DWORD
-Value: 1
Protect Critical Registry Keys The following keys should be protected using
the following permissions:
- Administrators (Full Control)
- SYSTEM (Full Control)
- Creator Owner (Full Owner)
- Everyone (Read Only)

HKEY_LOCAL_MACHINE\SOFTWARE
Microsoft\Windows\CurrentVersion\Run

HKEY_LOCAL_MACHINE\SOFTWARE
Microsoft\Windows\CurrentVersion\RunOnce

HKEY_LOCAL_MACHINE\SOFTWARE
Microsoft\Windows\CurrentVersion\RunOnceEx

HKEY_LOCAL_MACHINE\SOFTWARE
Microsoft\Windows NT\CurrentVersion\AeDebug

HKEY_LOCAL_MACHINE\SOFTWARE
Microsoft\Windows NT\CurrentVersion\WinLogon

HKEY_LOCAL_MACHINE\Software
Microsoft\Windows\Current\Version\Uninstall
Remove FPNWCLNT trojan bug (if not using FPNW) HKEY_LOCAL_MACHINE\SYSTEM
CurrentControlSet\Control\Lsa
Select: Notification Packages
Delete: FPNWCLNT (only!)
Protect Printer Drivers HKEY_LOCAL_MACHINE\SYSTEM
CurrentControlSet\Control\Print\Providers\LanMan Print Services\Servers
Add: AddPrintDrivers
-REG_DWORD
-Value:1
Disable CD-ROM Autorun HKEY_LOCAL_MACHINE\SYSTEM
CurrentControlSet\Services\Cdrom
Select: Autorun
-REG_DWORD
-Value:0
Limit floppy usage to console user HKEY_LOCAL_MACHINE\SOFTWARE
Microsoft\WindowsNT\CurrentVersion\Winlogon
Add: AllocateFloppies
-REG_SZ
-Value:1


PAGE: 1 I 2 I 3 I 4 I FIRST PAGE
 

Research and Reports

Hypervisor Derby
August 2011
Network Computing: August 2011

Video


WATCH: Box.net CEO Aaron Levie Takes On Microsoft

WATCH: HP Chairman Ray Lane: Focus On Innovation

WATCH: How OpenFlow Changes Networking


View All Videos
Previous Page First Page Second Page Third Page Next Page

Most Popular

Stories Blogs

More Stories »

Featured Whitepapers

Featured Reports

BlogRoll

TechWeb Careers