hacking contest

hacking exploits security forum
hacking
compliance articles
upgrade backup exec
information security consultant
Help - Search - Member List - Calendar
GovernmentSecurity.org > The Archives > General Network Security
||SysTeM||
Jan 19 2004, 05:09 AM
Ello, I need to know the best way to protect Win XP Home Edition.

I'm currently running a web server, IRC server, And FTP Server.

I want to make my system secure, but still be able to use the above servers.

Any Help is great smile.gif

Thx

||SysTeM||
tolf
Jan 19 2004, 06:03 AM
In a nut shell:

Firewall off your box
Patch your box.
Use IIS lockdown (for web server)
Configure IRC and FTP properly (ie ACLS for write and read permissions)
Run vulnerability scanners and cgi scanners against it afterwards.
talaxian
Jan 19 2004, 01:55 PM
My answer: Plug it in smile.gif lol
Faceless Master
Jan 19 2004, 04:14 PM
hmm..this might help Xp Users a bit.
http://www.xp-antispy.de/
Regards
~Faceless Master
wd_stroke
Jan 19 2004, 05:34 PM
You can also go here:

http://www.blackviper.com/Articles/OS/OSguides.htm
dissolutions
Jan 19 2004, 05:38 PM
Use the latest version of apache.
make sure your ftp has it's permissions set right and directories are quarantined off.
turn anonymous connections to your ftp OFF
run both FTP,IRC,and HTTP in a guest account.
set passwords for these accounts to 10+ characters.
turn off remote registry tongue.gif

have fun bud biggrin.gif laugh.gif

btw some suggestions about you needing a hard drive could be:
going to the electronics recycling plant and asking to have one, they'll make about 3 dollars per hard drive so you can expect to have to pay about that much.

Go dumpster diving biggrin.gif, find the business district and go check out outside the dumpsters you'll find a few computers lying around there about once a month or so and keep digging out the hard drives even if they are only a gig or so and build a raid system. biggrin.gif tongue.gif
||SysTeM||
Jan 19 2004, 05:46 PM
Dumpster diving....Lol.

I've allready set permissions with the ftp server. i'll have to read apache documentation a lil bit so that i can fully understand the config script. i believe i have it set right.

2 questions.

What is, and how do i turn off remote registry?

And what do you mean by running ftp, irc, & Http in guest accounts?
SyN/AcK
Jan 19 2004, 05:46 PM
The absolute best resource!

NSA's Recommendations on Securing Various Operating Systems

Hope this helps.

SyN/AcK
Jan 19 2004, 05:51 PM
QUOTE (||SysTeM|| @ Jan 19 2004, 05:46 PM)
Dumpster diving....Lol.

I've allready set permissions with the ftp server. i'll have to read apache documentation a lil bit so that i can fully understand the config script. i believe i have it set right.

2 questions.

What is, and how do i turn off remote registry?

And what do you mean by running ftp, irc, & Http in guest accounts?

Remote Registry is exactly what it sounds like. Its a service, that runs by default on most windows installations, that allows you to remotely edit the registry provided you have Administrator privileges on a machine. Very dangerous indeed. You can turn it off by going to Start->Administrative Tools->Services Then going to Remote Registry and right-clicking, then click properties, then go to the drop-down box and select Disable.
||SysTeM||
Jan 19 2004, 05:54 PM
QUOTE (SyN/AcK @ Jan 19 2004, 05:51 PM)

Remote Registry is exactly what it sounds like.  Its a service, that runs by default on most windows installations, that allows you to remotely edit the registry provided you have Administrator privileges on a machine.  Very dangerous indeed.  You can turn it off by going to Start->Administrative Tools->Services Then going to Remote Registry and right-clicking, then click properties, then go to the drop-down box and select Disable.

Ahhh Ty. That is very bad to keep on.

I'll turn it off right now.

Thanks again.


edit: I didn't see it as being turned on. so commen sense told me i have it turned off heh
tolf
Jan 20 2004, 04:17 AM
If you have admin privileges you can just turn it straight back on though...

net start "remote registry service"
mamep
Jan 21 2004, 10:45 PM
just unplug the internet biggrin.gif
it's the best way to protect yourself laugh.gif
||SysTeM||
Jan 26 2004, 02:54 AM
QUOTE (tolf @ Jan 20 2004, 04:17 AM)
If you have admin privileges you can just turn it straight back on though...

net start "remote registry service"

why would i want to turn it back on, if i want it off in the first place?
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
 
Invision Power Board © 2001-2005 Invision Power Services, Inc.