>

Most Viewed Networking Devices:

  1. Small business firewalls
  2. Computer networking hardware
  3. High speed gigabit PCI adapter
  4. USB 3.0 PCI Card for Super Speed Data Transfer Rate
  5. Small Business Computer Network with Apple Mac Mini Server
  6. NSA 240 Sonicwall Small Business Network Security
  7. Cisco WRVS4400N Wireless Security Router
  8. Cisco RV 120W Wireless-N VPN Firewall and VLAN Router
  9. Cisco RV016 Multi WAN Router For Small Business
  10. Cisco RV220W Small Business Router
  11. Cisco RV082 Dual WAN VPN Router
  12. Edimax EnduraLINK ER-1088 Multi WAN Routers
  13. TL-R4299G Dual WAN Router for Internet Café
  14. New WNDR4500 N900 Vs Tew-692GR N900 Routers
  15. Netgear WNDR4000 and WNDR3800 Dual Band Routers
  16. Linksys E2500 Advanced Dual Band Router Vs E2000
  17. Linksys E-4200 Dual Band Gigabit Router

Most viewed Security Management:

  1. Information security management
  2. Firewalls Security Guidelines
  3. Business Continuity and Disaster Recovery Planning
  4. An Example of LAN Network Risk Assessment
  5. Information security policy guidelines
  6. Network Security Best Practices
  7. IT Security Risk Assessment

Most Viewed Networking Concepts:

  1. Local area network topology
  2. LAN Cable - standard deployment
  3. Easy way to calculate subnet mask
  4. VLAN tutorial
  5. WAN technologies
  6. Route summarization
  7. Understanding firewall with DMZ

 
«  
  »

Microsoft Windows XP

Microsoft Windows XP is still widely deployed globally by individual users or enterprise users, even though Windows Vista is beginning to replace XP. Microsoft Windows XP in its default configuration is not a secure platform.

The following sections will discuss the Microsoft Windows XP in Secure Configuration Guide that will provide instruction and describe the necessary steps on building secure computing platform with Microsoft Windows XP.

1. Physical Security and Hardware Setup

Placing all the servers with any OS including Microsoft Windows XP in a secure environment is important to avoid unauthorized personnel having the capability to power off the machine or perform physical damage to the box. It is relatively easy for the hackers to compromise any type of server if a person has physical access to it.

See also the guideline in office security.

To perform a reasonable level of security on a hardware level for your Microsoft windows XP machine, the following can be carried out:

  • Hardware that is not in use should be disabled
  • Booting from the CD-ROM or the floppy should be disabled; booting should be limited from C drive only.
  • BIOS setting should be password protected
  • Do not attach modem that can be used to remote access. If modem is absolutely needed, configure the system with dial-back capability and decent degree of authentication to avoid being compromised by war-dialing
  • For better level of security, use smart card or biometric device for authentication instead of password. If you should use the password, follow the guideline in securing the password.

2. Clean Installation

It is highly recommended to install Microsoft Windows XP using clean installation. Do not install Microsoft Windows XP over the pre-existing OS. If possible, avoid upgrading older OS because of potential security risks.

3. USE NTFS as the file system

Installing Microsoft Windows XP should select NTFS as the file system for boot/system partition, do not use FAT32 or FAT32 (that do not support security attribute). With NTFS, the file storage will be more efficient and better performance in multi-user server environment.

4. Separation of Operating System and Data

Microsoft Windows XP installation should create NTFS partition for Data separated from NTFS partition system. Even though it is not critical, physical separation of OS files; applications and user data is important. This will also have positive impact on performance.

5. Install Only Necessary Services and Components

We should remember that Microsoft Windows XP default installation is not secure. When you have completed the installation, you can uninstall unnecessary components using the Add/Remove windows components. Do not automatically check everything or accept default settings, select Custom installs instead which are always a good practice. As a rule, keep everything minimal.

6. Install Antivirus Software

All the servers including Microsoft Windows XP must be protected by Anti-virus software to prevent any types of malicious codes, Trojan horse, and backdoor programs. For business or enterprise class network, deployment of Virus protection system centrally is very important where the clients will download the updates automatically to the management server not direct to the Internet. See also computer virus protection system.

7. Service Packs and System Updates

Microsoft Windows XP service packs (SP) are collections of fixes in the areas of application compatibility, operating system reliability and security. Up to now, Microsoft Windows XP have released SP3. Before upgrading the service pack, the following tasks should be done:

  • A full backup for critical files must be performed, and ERD (Emergency Repair Disk) must be created. See also Hard disk backup – a full hard disk backup guide
  • The installation package should be tested on different non-production machine first.
  • Make sure that the partition disk as the target system has enough disk space.
  • All applications should be closed before starting the installation
  • Accept the option to backup existing files

8. Patches (Hotfixes)

Your Microsoft Windows XP (and all critical servers) must be patched regularly as soon as the patches are released by Microsoft. Patches or hotfixes are small updates, released frequently, and usually addressing one particular problem or security vulnerability that was discovered in common components of Windows or additional Microsoft applications. The main source of information is the Microsoft TechNet support site:

http://www.microsoft.com/technet/security

All security problems and solutions are now released in Microsoft Security Bulletins, and also addressed in Microsoft Knowledge Base articles

9. Windows Update Service

Your Microsoft Windows XP should be setup to automatically receive the Windows Update Service (WUS). WUS is launched by selecting the Windows Update option from the Start Menu, or by visiting the Microsoft Update web site:

http://windowsupdate.microsoft.com

See also:

Share
December 16th, 2009 | Tags: , | Category: Information Security

1 comment to Microsoft Windows XP

Leave a Reply

 

 

 

You can use these HTML tags

<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>