Tips for improving computer security under Windows XP, Part 3
10. You should also disable the Windows Messenger service, which is normally used by programs and users to send messages between computers in a local network, as it can be used in some sort of Internet – based advertising exploit. Users may experience unwanted message windows popping up on their desktop, with information about certain products or services that are usually promoted through email spam. To get rid of all these messages, simply disable the Windows Messenger Service. Please note that we refer to the built-into Windows service named Windows Messenger Service, and not to the program with the same name that is used by online users to send messages and files amongst themselves.
11. Disable Guest user on the local computer. This is very important since this account runs without a password. If this account is enabled, anyone can enter your computer without the need to have a proper user name and password. Having the Guest user enabled is a serious security risk.
12. Disable all IIS services that you do not need, like HTTP or FTP or SMTP. You can find these services listed under Control Panel – Administrative Tools – Services. If you cannot locate these services there, then likely IIS is not installed on the local machine. Please note that configuring IIS in a proper fashion is not a job for the common user, and it requires strong computer knowledge; otherwise, the computer can be exposed to a wide range of risks based on possible exploits for IIS that can be used by outside attackers to take control over your computer due to a improperly configured instance of IIS.
13. Disable the Telnet service, as this can be an excellent way for an attacker to send commands to your computer and to control it remotely.
14. Disable Terminal Services or Remote Desktop under Windows XP, unless you need such remote desktop capabilities, for example if you use to connect to your home computer from a laptop while you are in transit or in another location. Terminal Services and Remote Desktop are making use of the Remote Desktop Protocol that enables users to control a remote computer, in a similar fashion as standing directly in front of the computer.
15. Be informed. Learn about configuring and securing Windows installations, and about new viruses and security threats discovered every day. Please keep in mind that this is a never ending battle and that you need to be informed in order to stay secure.
11. Disable Guest user on the local computer. This is very important since this account runs without a password. If this account is enabled, anyone can enter your computer without the need to have a proper user name and password. Having the Guest user enabled is a serious security risk.
12. Disable all IIS services that you do not need, like HTTP or FTP or SMTP. You can find these services listed under Control Panel – Administrative Tools – Services. If you cannot locate these services there, then likely IIS is not installed on the local machine. Please note that configuring IIS in a proper fashion is not a job for the common user, and it requires strong computer knowledge; otherwise, the computer can be exposed to a wide range of risks based on possible exploits for IIS that can be used by outside attackers to take control over your computer due to a improperly configured instance of IIS.
13. Disable the Telnet service, as this can be an excellent way for an attacker to send commands to your computer and to control it remotely.
14. Disable Terminal Services or Remote Desktop under Windows XP, unless you need such remote desktop capabilities, for example if you use to connect to your home computer from a laptop while you are in transit or in another location. Terminal Services and Remote Desktop are making use of the Remote Desktop Protocol that enables users to control a remote computer, in a similar fashion as standing directly in front of the computer.
15. Be informed. Learn about configuring and securing Windows installations, and about new viruses and security threats discovered every day. Please keep in mind that this is a never ending battle and that you need to be informed in order to stay secure.
This information is provided without any warranties of any kind. Use it at your own risk. Terms and conditions