• RSS
  • Twitter
  • FaceBook

Security Forums

Log in

FAQ | Search | Usergroups | Profile | Register | RSS | Posting Guidelines | Recent Posts

Securing Windows 2000 Professional on Workstation Role

Users browsing this topic:0 Security Fans, 0 Stealth Security Fans
Registered Security Fans: None
Post new topic   Reply to topic   Printer-friendly version    Networking/Security Forums Index -> Exploits // System Weaknesses

View previous topic :: View next topic  
Author Message
gigsvoo
Just Arrived
Just Arrived


Joined: 16 Aug 2002
Posts: 0


Offline

PostPosted: Tue Jan 07, 2003 9:05 am    Post subject: Securing Windows 2000 Professional on Workstation Role Reply with quote

Hi there,

Does anyone has any quick and simple guidelines to secure Windows 2000 Professional on Workstation Role? The following are done:

- WindowsUpdates for Service Packs, Patches, Updates
- Behind a solid firewall of CheckPoint
- Using Fixed internal IP from DNS server

Also, provided the following applications are running at workstation:

- Surfing internet using IE
- Checking email using webmail (Yahoo! and Hotmail)
- Using MS Outlook 2000 for accessing network email from MS Exchange
- Norton Antivirus Corp Edition 7.6 installed with latest updates
- Using messaging software with P2P, File transfer disabled. Uses only HTTP and port 25 for connections.

Noted: Please do not advise to change/discard any software mentioned above for security measurement although it may proven to be TRUE, as I agreed. But here I need some advise to make these to be the best settings and policy ever.
Back to top
View user's profile Send private message
ShaolinTiger
Forum Fanatic
Forum Fanatic


Joined: 18 Apr 2002
Posts: 16777215
Location: Kuala Lumpur, Malaysia

Offline

PostPosted: Tue Jan 07, 2003 11:29 am    Post subject: Reply with quote

Read this:

http://www.darknet.org.uk/content/files/securewin2k.txt

Ensure Outlook is also patched.

Make sure your IE settings are SECURE.

Make sure NAV autoupdates with the latest definitions and is passworded (can't be disabled by user or trojan).

If you wanted to be really secure I'd probably add a free personal firewall to each machine to lock them down even tighter.

Rename local admin accounts, set full auditing etc..
Back to top
View user's profile Send private message Visit poster's website
gigsvoo
Just Arrived
Just Arrived


Joined: 16 Aug 2002
Posts: 0


Offline

PostPosted: Tue Jan 07, 2003 12:16 pm    Post subject: Reply with quote

Rename local admin account? Set full auditing? I am newbie, how to do this? Sad
Back to top
View user's profile Send private message
Display posts from previous:   

Post new topic   Reply to topic   Printer-friendly version    Networking/Security Forums Index -> Exploits // System Weaknesses All times are GMT + 2 Hours
Page 1 of 1


 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum

Community Area

Log in | Register