General NT Security Tips

Tip #1:
File System - To fully utilize NT's advanced security features you'll need to utilize the NTFS file system. Using the FAT system that's compatible with other operating systems limits the amount of security that NT can afford to sharing, and permissions. If you MUST use FAT formatted drives, be sure that they are on your data drives that other operating systems access on the same machine. Always install the NT operating system software on an NTFS drive.

Tip #2:

Accounts - Ensure that your guest account is disabled. Do this through the User Manager application. Also it's a good idea to create an alternate Administrator account under another name, and then remove all permissions from the Administrator account. Since the Administrator account is the top choice of intruders, let them expend all their energy cracking that account only to find that they have no permissions. Note: Ensure that you have added all permissions to the new administrator account before disabling the old one.

Tip #3:

Networking Protocols - If you only share files and printers on a few machines you might want to use the NETBEUI protocol for routine LAN operations. Then you can enable TCP/IP for dial-up networking exclusively. Since NETBEUI isn't a routable protocol it will give your LAN some degree of protection from dial-up intrusion.

Tip#4:

Screen Savers - Ensure that all machines connected to your LAN have one of the NT screen savers turned on. Enable the screensaver's built-in password protection to protect unattended machines. A good choice is a 5 minute wait.

Tip #5:

Firewalls/Proxy Servers - It's always a good idea to install a proxy server, or firewall on your gateway machine. It will help to filter out unwanted accesses by those you want to keep out. Good choices are SYGATE, or Microsoft Proxy Server. Several options are very inexpensive & pay large returns for securing your network.

Go Back

Home
Copyright (c) 1999-2005, Marathon Computer Press. All rights are reserved.