Re: Windows XP Services Best Practice

Note that CIS, NIST and NSA templates are a baseline specs, many of the settings are left undefined. Most places that implement it specifically define all services in the template so you should test-test-test the changes then test again. You can also define the context in which the service runs (eg: not just system) which can help isolate some services like 'remote registry'

Francisco Pecorella wrote:
Vic,

I think you can use the NIST Security Configuration Checklists Repository, specifically

Windows XP Security Guide
http://checklists.nist.gov/repository/1007.html

Windows XP Security Checklist
http://checklists.nist.gov/repository/1057.html

Windows 2003/XP/2000 Addendum
http://checklists.nist.gov/repository/1057.html

--
Regards,
FP
----- Original Message ----- From: "Vic Brown" <vabrown@xxxxxxxxxxxxxx>
To: <focus-ms@xxxxxxxxxxxxxxxxx>
Sent: Sunday, June 04, 2006 10:58 PM
Subject: Windows XP Services Best Practice


Anyone has a useful link with with information about what XP Pro SP2 services should be "disabled" on enterprise desktops according to "best" practice? Basically I'm looking for something that has the service name, functionality, security implication, and best practice recommendation. Desktop users are only running an office suite.

TIA
--
http://ccopanama.org





----------------------------------------------------------------



---------------------------------------------------------------------------

---------------------------------------------------------------------------




---------------------------------------------------------------------------

---------------------------------------------------------------------------



--
Michael Chinn
User Support Officer - Information Technology

Great Barrier Reef Marine Park Authority
PO Box 1379
TOWNSVILLE, QLD 4810

Ph 07 47500874 Fax 07 4772 6093
michaelc@xxxxxxxxxxxxx

================================================================================
If you have received this transmission in error please notify us immediately
by return email and delete all copies. Any unauthorised use, disclosure or
distribution of this email is prohibited.
================================================================================


---------------------------------------------------------------------------
---------------------------------------------------------------------------

Relevant Pages

  • Re: Windows XP Services Best Practice
    ... I think you can use the NIST Security Configuration Checklists Repository, ... Windows XP Security Guide ... Windows XP Security Checklist ... Windows XP Services Best Practice ...
    (Focus-Microsoft)
  • Re: Windows XP Services Best Practice
    ... These documents are specific to Windows 2003 Server, but you should be able to apply a lot of the information to Windows XP as well. ... Windows Server 2003 System Services Reference ... CISSP - Senior Security Consultant ... Windows XP Services Best Practice ...
    (Focus-Microsoft)
  • Best practise
    ... I'm looking for a Document on windows 2003 Web server, best practice, ... security. ...
    (microsoft.public.windows.server.security)
  • [NT] Cumulative Security Update for Internet Explorer (MS04-025)
    ... Get your security news from a reliable source. ... * Microsoft Windows NT Workstation 4.0 Service Pack 6a ... Navigation Method Cross-Domain Vulnerability ...
    (Securiteam)
  • [NT] Vulnerability in HTML Help Allows Code Execution (MS05-001)
    ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... Get your security news from a reliable source. ... * Microsoft Windows XP Service Pack 1 and Microsoft Windows XP Service ...
    (Securiteam)