Security Basics mailing list archives

RE: lock down personal Win XP workstation

From: "Kamran Iqbal" <kamran.iqbal () willaf com>
Date: Mon, 31 Jul 2006 18:05:14 +0100

Hi there, 

Most of the trapdoors, Trojans and backdoors are pre-defined along with
locations like c:\programs files .. etc ... that installs it self if
once you access HTTP.

Windows firewall blocks the services, ports but it does not block the
specific viruses, Trojan horses which normally anti viruses companies
do.

Kind Regards,

Kami

-----Original Message-----
From: sun sadm [mailto:sunsadm () gmail com] 
Sent: 31 July 2006 17:45
To: security-basics () securityfocus com
Subject: lock down personal Win XP workstationher

Hi colleague,

Sometimes I am forced to use Windows XP. I only run a Usenet, web,
IRC, mail, ssh client and music player. I regularly check for security
fixes.

To lock down my workstation I enable "Windows Firewall" to block all
traffic expect the applications mentioned above. I enabled "Automatic
Updates". Additionally I use "Security Configuration and Analysis" MMC
console and apply the predefined security template called hisecws.inf.
I don't use a virus scanner because I am not a license owner.

How secure is this setup? Are there ways an attacker can break my
system? Where are vulnerabilities? How would you break my system?

Nico

------------------------------------------------------------------------
---
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic
Excellence 
in Information Security. Our program offers unparalleled Infosec
management 
education and the case study affords you unmatched consulting
experience. 
Using interactive e-Learning technology, you can earn this esteemed
degree, 
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
------------------------------------------------------------------------
---






---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence
in Information Security. Our program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Using interactive e-Learning technology, you can earn this esteemed degree,
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------

Current thread:

lock down personal Win XP workstation sun sadm (Jul 31)
- <Possible follow-ups>
- RE: lock down personal Win XP workstation Kamran Iqbal (Jul 31)