![[Image]](../../sattools/Reviews/nodeye.gif){kind=small}
Following are some very important security settings to minimize attacks
and keep any outside hacker from poking into your server.
This is by no means a complete list.
| Name | Description | How to set it |
| Disallow anonymous access | This setting works in tandem with the Disable NetBios over TCPIP setting below. | 1. Start > Settings > Control Panel > Administrative Tools > Security settings > Local Policies > Security options >additional restrictions for anonymous connections Set to: No access without explicit anonymous connections 2. Or, edit the registry key: system\controlset001\control\LSA\restrictanonymous = set to "2" |
| Disable NetBios over TCPIP | Do this in the NIC card. This will diable anyone's ability to remotely enumerate the shares and user accounts on the server. | |
| DontDisplayLastUserName | This prevents the last user name from appearing on the logon screen. | Start > Settings > Control Panel > Administrative Tools > Security settings > Local Policies > Security options > Set to: Do not display last user name on logon screen |
| Rename Administrator account | This setting will rename the Administrator account on the server. | Start > Settings > Control Panel > Administrative Tools > Security settings > Local Policies > Security options >Rename administrator account Set to: Enter a new name for the Administrator account |
Recovery console: allow automatic administrative login |
local policies > security options | Do this in case you need to use the F8 option in the recovery console and work at the command prompt. |
| Recovery console: allow floppy copy and access to all files and folders | local policies > security options | Do this in case you need to use the F8 option in the recovery console and work at the command prompt. |
| Remote registry access | It's a service | Stop the service. |
If you like this article or maybe had a similar experience and would like to share it with other readers then feel free to:
Simply fill in YOUR e-mail address, your name and your comment. Click the SEND button.After submitting your comment, you will be transported back to the article you commented on!
John Cesta is a contract programmer. John's current project is designer and lead developer of the automated hosting software at bestcfhosting.com, a ColdFusion MX hosting company. John is currently working on commercializing his programs and offering them to the IIS community at serverautomationtools.com