At present, the use of an increasing number of ADSL users, as ADSL users online for a long time and speed, has become the target of hackers. Now there have been a variety of on-line more and more detailed IP address of the bank , it is necessary to know the IP number of ADSL users is very easy. How to defend their network security? Look at the following methods.
one or canceled文件夹隐藏share
If you use a system Windows2000/XP, right-click the C disk or other disk, choose sharing , you will be surprised to find that it has been set to share the document Folder and Network Places do not see them, how is this the case?
original, in a state default, Windows2000/XP district will be open all the hidden share, from the Control Panel / Administrative Tools / Computer Management window, select System Tools / shared folder / share , Can see that the hard drive of each district were behind the increase were a $. But as long as the type of \ \ computer name or IP \ C $ , the system will ask a user name and password, unfortunately, most of the individual user's password system Administrator for Space, the intruder can easily see the contents of the disk C, This is to network security posed a great danger.
how to remove the default share it? Is simple, open the Registry Editor, into the HKEY_LOCAL_MACHINE \ SYSTEM \ CurrentControlSet \ Sevices \ Lanmanworkstation \ parameters , a new AutoShareWKs The double-byte value, and value to 0 , and then re – Start the computer, so that the share has been canceled.
II, refused to malicious code
malicious website has become one of the greatest threats broadband. Prior to the use of Modem, due to open the pages slow to open in full before the closure of the website also avoid malicious hit. Now the speed of broadband so quickly and so easily have been malicious attacks on web pages.
because of the general malicious website to join with the preparation of the malicious code is destructive. These malicious code on the equivalent of a small number of procedures, as long as the open pages will be run. Therefore, to avoid malicious Web page to stop these attacks as long as the malicious code to run it.
running IE browser, click on Tools / Internet Options / Security / Custom Level , the security level is defined as security level – high, for the ActiveX controls and plug-ins in the first set of 2, 3 Prohibited , other items set to prompt after the click OK. This setting, when you use IE web browser, will be able to effectively prevent malicious Web pages malicious code attacks.
three, sealed the hacker back door
the saying goes, no smoke without fire , as hackers get into that system that must exist for them to open the back door as long as the back door blocked, so that no hackers to gain the upper hand, it would not have to worry about !
1. delete unnecessary
agreement for the server and mainframe, the only general to install TCP / IP protocol is enough. Right-click the mouse network neighbors and select Properties , then right-click the mouse local connection and select properties , uninstall unnecessary agreement. NETBIOS which is the root cause of many security flaws, the need to provide File and Print Sharing host, can also bind the TCP / IP protocol NETBIOS closed to prevent attacks against NETBIOS. Select TCP / IP protocol / properties / High, into the high-level TCP / IP Settings dialog box, select WINS tab, check the Disable TCP / IP on the NETBIOS a close the NETBIOS.
2. closure of the File and Print Sharing
file and print sharing should be a very useful function, but do not need it, hacking is a very good security. Therefore, there is no need to File and Print Sharing , we will be able to close it. Right-click with the mouse, network neighbors and select Properties and then click the File and Print Sharing button will pop the File and Print Sharing dialog box in two to hook Can be lost. Although
File and Print Sharing has been shut down, but it can not ensure safety, but also to modify the registry, it is prohibited to change people, File and Print Sharing. Open the Registry Editor, select the HKEY_CURRENT_USER \ Software \ Microsoft \ Windows \ CurrentVersion \ Policies \ NetWork primary key in the primary key under the new DWORD types of keys, known as the key NoFileSharingControl , as key 1 , said the Prohibition of the function so as to achieve the change to prohibit the File and Print Sharing, The purpose; key for the 0 that allow this feature. In this way, network neighbors , Properties dialog box File and Print Sharing has ceased to exist.
3. disable the Guest account
a lot of the invasion through the account administrator password or further permission. If you do not want their computer to other people when the toys, that's good or prohibited. Open the Control Panel, double-click user and password, click Advanced tab, then click Advanced button, pop Local Users and Groups window. Guest account in the top right-click and select Properties, in the General page select Account is disabled. In addition, the Administrator account can be renamed to prevent hackers know the administrator account, to a large extent this will ensure that computer security.
4. to prohibit the establishment of air link
in default, any user can connect through the air connected to the server, and guess enumeration account password. Therefore, we must prohibit the establishment of air connectivity. There are two methods:
One way to modify the registry: Open the registry HKEY_LOCAL_MACHINE \ System \ CurrentControlSet \ Control \ LSA , the DWORD value RestrictAnonymous The key to 1 can be.
final recommendations to all their systems patched Microsoft patch or those endless useful!
four or hide IP address
hackers often use some of the detection network to see our host, the main purpose is to be host of the network IP address. IP addresses in the network security is a very important concept, if the attacker knows your IP address, the same as he prepared to attack the goal, he can ask for all kinds of attacks launched by the IP, such as DoS (denial of service) attack , Floop overflow attacks, and so on. Hide IP address of the main ways is to use a proxy server.
and direct connect to the Internet, using a proxy server to protect the user's Internet IP address in order to protect the security of the Internet. The principle is a proxy server in the client (user's Internet computer) and remote server (for example, the user would like to visit the remote server WWW), to set up a transit point , when the remote server to the client requests for services, the proxy server first The interception of the user's request, and then a proxy server service request to the remote server in order to achieve client and the link between the remote server. It is clear that the use of a proxy server, other users can only detect the proxy server's IP address instead of the user's IP address, which achieved the IP address of the user to hide the purpose of safeguarding the security of Internet users. The provision of free proxy servers, many of the sites, you can also use their own proxy hunter, and other tools to find.
five, to close unnecessary ports in the invasion
hackers often when you scan the computer ports, if the installation of a port surveillance program (such as Netwatch), the monitoring program will have a warning prompt. If you encounter this invasion, software tools can be used to close less than the port, for example, NortonInternetSecurity used to provide web services shut down for 80 and 443 ports, some other commonly used ports can be shut down.
six, to replace an administrator account
Administrator account with the highest authority of the system, once the account had been used, the consequences would be unthinkable. Hacking is a common means of trying to get the Administrator account password, so we have to re-configure the Administrator account.
First, the Administrator account set up for a strong complex password, and then we rename the Administrator account, and then create an Administrator account administrator rights to deceive the invaders. As a result, the invaders will be very difficult to understand the true accounts which have administrative privileges, to some extent also reduced the danger.
seven, put an end to the invasion of the Guest account
Guest account of the so-called guest account, which you have access to computers, but limited. Unfortunately, Guest also opened the door to hacking! There are many online articles have introduced the use of Guest users administrative privileges to be way, so to put an end to the system based on the Guest account of the invasion.
completely disable or delete the Guest account is the best way, but to have to use some of the Guest account, on the other through channels to do a good job in defense work. Guest first to give a strong password, and then set up a detailed account of the physical path Guest access. For example, if you want to prevent Guest users can access the folder tool, you can right-click the folder in the pop-up menu, select the Security tab, from which we can see that you have access to this folder for all users. Administrators to delete all but the user can. Or permission for the user to set the appropriate permissions, for example, only the List Folder Contents and read and so on, so that more security.
eight, to install the necessary security software
we should also be installed on the computer and use the necessary Hacking software, firewalls and antivirus software are essential. In the Internet when they open, even if there is such a hacker attack our security is guaranteed.
nine,
procedures to guard against Trojan horse programs to steal the computer into useful information, so we have to prevent hacking into Trojans, commonly used methods are:
● Download the file to put their new documents Folder, use antivirus software to detect, played the role of prevention in advance.
● start → procedure → start or start → procedure → Startup option, to see if it's not running, and if so, can be deleted.
● will be in the registry HKEY_LOCAL_MACHINE \ SOFTWARE \ Microsoft \ Windows \ CurrentVersion \ Run all to Run as a prefix to delete all the suspicious process.
decade, not a stranger to the e-mail
some hackers may be posing as some of the formal name of the site, and then made a high-sounding reason to send a letter to ask you to enter your Internet user name and password, press the OK , Your account number and password on hacking into the e-mail. Therefore, it should not strangers to the message, even if he is right again sounds attractive not fooled again.
do a good job in IE's security settings
ActiveX controls and Applets are strong, but there was the potential use of the web page of malicious code is often used to prepare the small control procedures, as long as the page will be opened to run. Therefore, to avoid malicious Web page to stop these attacks, only to run malicious code. IE has provided a wide range of choices, to set specific steps are: tool → Internet Options → safe → Custom Level , recommended that you ActiveX control with the option to disable. The total is nothing wrong with some caution!
In addition, the IE security settings, we can only set the Internet, Local Intranet, Trusted sites, restricted sites. However, Microsoft's here to hide the My Computer security settings, by modifying the registry to the options open to us in dealing with ActiveX controls and Applets have more choices, and the local computer security A greater impact.
The following are specific ways: to open the start menu Run in the pop-up operation dialog box, type Regedit.exe, open the Registry Editor, click on the front, sequential to begin: HKEY_CURRE-NT_USER \ Software \ Microsoft \ Windows \ CurrentVersion \ InternetSettings \ Zones \ 0, in the right side of the window to find a DWORD value of Flags , the default key to hexadecimal 21 (33 decimal), double-click Flags , In the dialog box will pop the key to 1 to close the Registry Editor. No need to restart the computer to re-open IE, once again click on Tools → Options → Internet security tab, you will see one more My Computer icon, where you can set the level of security. It will set the security level higher, closer to guard against such.

评论暂缺 »

还没有任何评论。

这篇文章上的评论 RSS feed TrackBack URL

留下评论

发表评论您必须先登录。