Re: Security Hardening
- From: z1z1z1 <bogus@xxxxxxxxxxxxx>
- Date: Wed, 23 May 2007 04:50:02 GMT
Hiding the computer from the browse list will do very little to increase
security, as many attacks are done via an IP scan by a program, not by
looking at the browse list (mostly there for human eyes). Also, an
attacker may often not be in a position (for example, in the same
workgroup/subnet) to see the browse list anyway.
=?Utf-8?B?REQ=?= <DD@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in
news:638F43A5-77EE-4050-9004-A3B4CFF98CD1@xxxxxxxxxxxxx:
Hi Paul,
What problems you will forsee if we hide the computer ?
"Paul Bergson [MVP-DS]" wrote:
Hiding drives isn't going to do much for you and will only create
problems if you did do it.
To turnoff auto play you can use a gpo (This is what we do)
Machine / Administrative Templates / System / Policy - Turn off
Autoplay = Enabled, Turn off Auto play on = all drives
--
Paul Bergson
MVP - Directory Services
MCT, MCSE, MCSA, Security+, BS CSci
2003, 2000 (Early Achiever), NT
http://www.pbbergs.com
Please no e-mails, any questions should be posted in the NewsGroup
This posting is provided "AS IS" with no warranties, and confers no
rights.
"DD" <DD@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:83184562-003E-4CC1-B65A-3711C93CA94E@xxxxxxxxxxxxxxxx
Would like to know
1) how to hide the computer from network browse list -
Prevent a potential attacker inside the firewall from generating a
list of available network resources
2) Disable Autorun- Prevent a malicious program from starting when
media is
inserted
on windows 2003 server and DC
.
- References:
- Re: Security Hardening
- From: Paul Bergson [MVP-DS]
- Re: Security Hardening
- Prev by Date: Failure to update domain policy Impersonate a client after authenication
- Next by Date: Re: Windows 2003 Pre-authentication failed
- Previous by thread: Re: Security Hardening
- Next by thread: Re: Security Hardening
- Index(es):
Relevant Pages
|
