lock down personal Win XP workstation

["sun sadm" <sunsadm () gmail com>]

Hi colleague,

Sometimes I am forced to use Windows XP. I only run a Usenet, web,
IRC, mail, ssh client and music player. I regularly check for security
fixes.

To lock down my workstation I enable "Windows Firewall" to block all
traffic expect the applications mentioned above. I enabled "Automatic
Updates". Additionally I use "Security Configuration and Analysis" MMC
console and apply the predefined security template called hisecws.inf.
I don't use a virus scanner because I am not a license owner.

How secure is this setup? Are there ways an attacker can break my
system? Where are vulnerabilities? How would you break my system?

Nico

---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence 
in Information Security. Our program offers unparalleled Infosec management 
education and the case study affords you unmatched consulting experience. 
Using interactive e-Learning technology, you can earn this esteemed degree, 
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------