Security Basics mailing list archives
Re: lock down personal Win XP workstation
From: "Gyenyami InvestinLoss" <d69frk () hotmail com>
Date: Thu, 10 Aug 2006 03:42:40 +0000
Also a good thing to check out is the Security Readiness Review Scripts from Ia.disa.mil the "FOR CIV" use of course.
From: "Ivan ." <ivanhec () gmail com> To: krymson () gmail com CC: "sun sadm" <sunsadm () gmail com>, security-basics () securityfocus com Subject: Re: lock down personal Win XP workstation Date: Wed, 2 Aug 2006 09:27:14 +1000 Description of the Guidance for Securing Microsoft Windows XP Systems for IT Professionals: http://csrc.nist.gov/itsec/guidance_WinXP.html On 8/1/06, Michael Krymson <krymson () gmail com> wrote:I would definitely not use IE (use Firefox) nor use Outlook (Thunderbird?).Make sure your local administrator account password is secure. Clanwin is a free antivirus product which I highly recommend (I am with you, why pay for it?). IRC is cleartext, I believe, so if you're on a laptop, be sure you use IRC over public wireless sparingly. Sames goes for mail. Also for a laptop with wireless, be sure Windows is set to not automatically connect to any open wireless in the area. The good thing about your setup is that you know what you're using it for, and nothing else. Anything else odd will hopefully stick out, including errant processes and such. Those are just some ways I would attack you if you were a mark. If you're on a desktop, you don't have much to worry about other than email attachments and viewing web pages in IE. If you're on a laptop, I can learn a lot about you at a public hotspot, such as your email address (I can then send you crafted stuff), your SSH servers that you connect to, your IRC servers, etc. I can learn a lot and possibly prey on you directly, but it all requires you to be careless. Sounds like you're pretty vigilant as it is, so that should be ok. sun sadm wrote: > Hi colleague, > > Sometimes I am forced to use Windows XP. I only run a Usenet, web, > IRC, mail, ssh client and music player. I regularly check for security > fixes. > > To lock down my workstation I enable "Windows Firewall" to block all > traffic expect the applications mentioned above. I enabled "Automatic > Updates". Additionally I use "Security Configuration and Analysis" MMC > console and apply the predefined security template called hisecws.inf. > I don't use a virus scanner because I am not a license owner. > > How secure is this setup? Are there ways an attacker can break my > system? Where are vulnerabilities? How would you break my system? > > Nico >> ---------------------------------------------------------------------------> > This list is sponsored by: Norwich University > > EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE > The NSA has designated Norwich University a center of Academic > Excellence in Information Security. Our program offers unparalleled > Infosec management education and the case study affords you unmatched > consulting experience. Using interactive e-Learning technology, you > can earn this esteemed degree, without disrupting your career or home > life. > > http://www.msia.norwich.edu/secfocus> ---------------------------------------------------------------------------> > > --------------------------------------------------------------------------- This list is sponsored by: Norwich University EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The NSA has designated Norwich University a center of Academic Excellencein Information Security. Our program offers unparalleled Infosec managementeducation and the case study affords you unmatched consulting experience.Using interactive e-Learning technology, you can earn this esteemed degree,without disrupting your career or home life. http://www.msia.norwich.edu/secfocus ------------------------------------------------------------------------------------------------------------------------------------------------------ This list is sponsored by: Norwich University EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINEThe NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life.http://www.msia.norwich.edu/secfocus ---------------------------------------------------------------------------
--------------------------------------------------------------------------- This list is sponsored by: Norwich University EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINEThe NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life.
http://www.msia.norwich.edu/secfocus ---------------------------------------------------------------------------
Current thread:
- Re: lock down personal Win XP workstation Michael Krymson (Aug 01)
- Re: lock down personal Win XP workstation Mike Peppard (Aug 02)
- Re: lock down personal Win XP workstation Ivan . (Aug 02)
- Re: lock down personal Win XP workstation Gyenyami InvestinLoss (Aug 10)
- Re[2]: lock down personal Win XP workstation gmx (Aug 04)
- <Possible follow-ups>
- Re: lock down personal Win XP workstation Ansgar -59cobalt- Wiechers (Aug 01)