How To Secure Windows XP?

With Microsoft security essentials . Is it 'powerful. It 's free. It 'up to date. And is it light because it integrates seamlessly with Windows (Microsoft both)

hi

nonsolonapoli.it

2

I don't use windows, I use linux ubuntu now.

You should make sure that you have configured your firewall correctly making sure that unused ports are closed, keep port 80 and 8080 open, for web browsing (HTTP).

Constantly update your virus, malware, spyware definitions, if you weren't updating then infection you may pick up won't be terminated as the scanner know no better.

For a web browser I think you should use firefox with the add-on noscript, in case that you connected to a malicious website containing malicious scripting for example java drive-by, you shouldn't become infected automatically.

For keeping user accounts secure, use complex but easy to remember passwords. An attacker may try to crack your password using attacks like rainbow tables, brute force, dictionary attacks. A tool that they would use to crack your password is called ophcrack.

Also with account privileges make sure that you restrict normal users from downloading files from the internet, your computer may become infected which will infect all users on your computer.

I think there is a feature which allows you to block USB Sticks from executing on your system as well, if there is you should enable that as an infected USB can compromise your system making it very messy.

In case you have someone keylogging you, install the program keyscrambler, this will scramble the keystrokes typed meaning that you won't have personal information or credentials exposed.

If you are really serious about security then you should move away from windows to less targeted operating systems. I've heard BSD is good for security, I am happy with linux at the moment as it's easy to use.

Use NTFS on all the partitions.

NTFS provides additional security features so by converting your drives’ file system into NTFS you provide the

additional security layer to your drives.

Disabling simple file sharing.

Both Windows XP Home Edition and Professional system that are not a part of the domain use Network Access model

called Simple File Sharing. Set you by default shared folders to read only.

3. Disable guest account.

The guest accounts are always the great holes for the hackers so disable them as soon as you install the operating

system.

4. Installing antivirus & anti spyware software on all the computers.

Install up-to-dated antivirus and anti spyware program on all your systems to prevent them from viruses, spyware,

adware and internal and external threats

5. Using security configuration manager.

The Security Configuration Manager is a set of tools that allows the network administrators to define the security

templates that can be applied on the single machine or a group of computers via group policy

6. Limiting the numbers of unnecessary accounts.

Delete any duplicate accounts, shared accounts, test accounts and general accounts. Use group policies to assign

permissions

7. Renaming the administrator accounts.

Many hackers use SID to find the name of the account. Renaming the administrator’s account will make it difficult

for the hackers to make assault on the system

8. Preventing last logged in user name.

When you use the CTRL-ALT-DEL, a logon dialog box shows the name of the last user and the last user name can be used

in the password guessing attacks

9. Disabling unnecessary services.

An unnecessary service is another unnecessary hacker’s hole so you can stop the unnecessary services such as IIS,

Remote Registry, Routing and Remote Access, Net Meeting, SSDP discovery service in the control panel.

10. Install and user port scanner.

Ports are interfaces where devices communicate with each other. Scan all the open ports to find out any intrusion

attempts

11. Encrypt the temp folder.

Encrypting the temp folder (where Windows XP Professional’s files are stored) provides an extra security layer

12. Disable default shares.

Windows XP Professional creates hidden administrative shares that are used by the operating system. These shares

can be disabled in the Computer Management Console

13. Enable auditing on the workstations.

Enable auditing such as Account Logon Events, Logon Events, Object Access, System Events and Policy change. By

these events, you can investigate any data theft and security related event

14. Disable dump file creation.

Dump file is a good application tool and is used when system or application crashes and shows blue screen. You can

change the dump file settings in the control panel.

15. Disable autorun for the CD ROM.

Turn the auto play feature in the Windows XP off.

16. Install latest service packs.

Always update your operating system with the latest service packs.

17. Implementing IPsec.

IP Sec provides the encryption for the network sessions so by using IP Sec your system gets extra security layer.

The only 100% effective method against 'on-line' malware infestations is to not go on the Internet. Simple.

'Out-of-the-box' MS Windows absolutely reeks with security problems and bad configurations that average users are unaware of...and so the endless exploits and malware infections.

You must reform your entire Windows strategy and tactics.

"10-Step Security"/PC World; http://www.pcworld.com/article/122500/10step_secur...

Stop using Internet Explorer!

It is the Undisputed World Heavyweight Champ @ passing malicious garbage.

Firefox, beefed up with these effective Firefox Collection items, stops acres of malware seen here in Y! Answers:

https://addons.mozilla.org/en-US/firefox/collectio...

"NoScript" will go a long way preventing "rogue" malware infections.

Turn off 3rd party assets:

Tools> Options> Privacy> top drop menu set to "Firefox will use custom settings..."> Check 'Accept Cookies from sites'

►& Un-Check 'Accept 3rd Party cookies'.

Always incorporate a stout firewall: Some freeware is here: http://www.snapfiles.com/Freeware/security/fwfirew...

Look them over and match your needs to skill level.

Use "Sandboxie": http://www.sandboxie.com/ for even better protection.

Core defense applications might include (but not limited to) a robust dedicated anti-virus (I make no recommendations).

And, get this installed: ►"HOSTS file" (from mvps.org) which blocks evil webpage assets from re-directs which install malware or trashware. (Vista requires special instructions; on-page link)

http://www.mvps.org/winhelp2002/hosts.htm

SpywareBlaster (snoopware prevention and hostfile guardian); http://www.javacoolsoftware.com/spywareblaster.htm...

If you don't have time or skill for 'updating', have a look @ "Secunia": checks all your 3rd party stuff for updates.

Freeware, and has a one click 'install solution' feature...very handy.

http://secunia.com/vulnerability_scanning/

Most novice users and Windows fanboys do not like hearing this, but nonetheless, it's true: using Windows on the Internet, requires you to become a security EXPERT, it's that freekin' simple. Something they conveniently omit telling you when you buy this system...

So far your answers have been not so helpful. Security is the antithesis of useful functionality, so we need some idea of how secure you'd like it and from what before we can give you a useful answer. Assuming you are just talking about keeping it secure from browsing or remote hacking threats, that's fairly easy.

1. Hardware firewall

2. Anti-Virus/Anti-malware

3. Complex passwords on all accounts

4. Ditch Internet Explorer and use Chrome or Opera

5. Only surf using a user account not an admin account

6. Update OS, Security software, Browsers, Java, Flash, and Acrobat regularly.

Nothing related to computers is secure, no matter how good your anti-malware application is.

Same as any other Windows. Get yourself an anti-virus and keep it updated.

Oh and stay away from suspecious sites, such as: "You won 1 million euros! Congratulations! Click here to receive your reward!" and they will indeed give you a nice reward.

If you mean lock it so you are the only one who can use it..go to user accounts click on your account, and set a password. Just be sure to remember it!!!