Slashdot Mirror


NIST Issues Windows XP Security Guide

routerwhore writes "NIST Special Publication 800-68 (zip file) has been created to assist IT professionals, in particularly Windows XP system administrators and information security personnel, in effectively securing Windows XP systems. It discusses Windows XP and various application security settings in technical detail."

4 of 253 comments (clear)

  1. Looks very usefull at first glance by Marxist+Hacker+42 · · Score: 5, Informative

    Especially for those of us who have mixed LANs at home. This was the first I had heard of a way to disable 445, the replacement Netbios port (even if it's a convoluted way to do it).

    --
    SJW: a person who perceives an injustice, and while correcting it, commits a greater injustice.
  2. Actually has some good points by grunt107 · · Score: 5, Informative

    There are some areas around the registry and memory dump settings that could be useful (how many actually send MS their abend dumps?), shutting remote access, and pointing out the usage and benefits of a firewall. When it comes to internet downloads/emails, though, the standard "Don't open unknown emails/attachments" still abounds. Rather lengthy - could do w/o the graphs and standard defs.

  3. Re:isolate by BrookHarty · · Score: 5, Informative

    Actually, that is pretty important as theres is no Service Pack 2 XP Cd out. If you install on an open Internet connection, you can be infected before you download the updates. Even our work lan wasnt protected, soon as I plugged my laptop in for updates it was infected, and I had to clean it off. (Ya, ya, zone alarm....) I guess the default XP firewall turned on would at least be some protection.

    I think its worth picking up a cheap network router or wireless router so you can have NAT firewall to filter your PC. 802.11b routers are on sale for 20 bux that have NAT built in. Pretty cheap, and then you can update your PC before it gets infected.

    I have all service packs merged into my Win2k on CD, but WinXP only has the default SP1 without the updates for a year. So, the unplug or firewall your Internet connection is pretty important.

  4. Quick way to get the post-SP1 pre-SP2 updates by semifamous · · Score: 5, Informative

    Quick way to get the post-SP1 pre-SP2 updates:

    AutoPatcher

    This is a good thing if you need to reinstall Windows soon before SP2 comes out.

    Even after SP2 comes out and it shrinks in size, the features it allows you to change are great.