Thursday, July 18, 2013

Guidelines for Securing Operating SystemPart 2 - Microsoft Windows



Hey all! Welcome back to my blog on this nice Thursday evening. Let's continue with our yesterday's discussion. As promised, I am coming up with a post on Guidelines specific for Microsoft Windows Operating System. Similarly I'll make a post about Mac OS, and one about the configuration of Windows Firewall.

Please note: This post is quite specific to Windows 7.



Turn on Windows Defender


This will help prevent malware from entering your system. Though I agree it is not an antivirus but keeping it turned on with an AntiVirus doesn't make things irritating. It rather secures. I know it is advertised that don't turn on more than one antivirus, and it is true, but running Windows Defender beside your regular AntiVirus doesn't irritate. Though if your Security Solution has Anti-Spyware, etc. too then you can safely turn Windows Defender off.



UAC - User Account Control


A great feature that came with Windows Vista and there since then is the UAC. User Account Control asks for permissions before installing anything on your system, and at times when you open certain programs which are generally associated with higher privileges and might damage your system if not used with care, or are potentially harmful otherwise.





Backup your Files


Windows backup is quite a handy tool. You can use Acronis True Image or Norton Ghost too. For network backups you can use Symantec Ghost. Backups make you safe from hardware and software failures. In case of attacks on your system, or virus infection backups make you have a copy of all important data. Backups are of many kinds. I'll discuss that in another post :)



Windows Update


As I said in my last post too updates are really necessary. They fix issues that are identified by testers and users. Patches and Updates from the vendor's own site are trustworthy and can be used safely over the third party ones. Windows Update helps fix many issues. It updates Microsoft software on your system too. At times, it also provide fixes and drivers for your most Non-Microsoft Hardware too.



Windows Firewall


Keep your Windows Firewall on. It helps prevent most Internet based attacks by blocking most inbound connections and suspicious outbound ones too. As I said I'll do a detailed discussion on Windows Firewall and it's configuration in a separate post later. For now just turn on your Windows Firewall using the Action Center of your Windows 7 PC.



Action Center


You did notice that flag icon on your taskbar right? That is the Action Center. It notifies you of most events happening in your computer. The best way is to raise the bar of Action Center Notification which would make you sure of whatever any software or you yourself are trying to do with your PC.

Disable the Guest Account


Guest account can be used by hackers to gain access of your computer. Always keep it disabled if you don't use it.

Rename the Administrator Account


Rather rename all the accounts after their creation. This would make you even secure. Actually, your username and your Home Folder have the same name. Renaming your user doesn't change the Home Directory name. Thus, makes things more secure.

NTFS AND EFS


Always use NTFS file system and not the FAT32. It is more secure and also has various other advantages. For example, FAT32 supports file sizes upto 4 GB, but NTFS supports more than that.

EFS is the Encrypted File System. It helps encrypting the File System and this makes the data more secure. To use encryption, Right Click on the File/Folder you wish to Encrypt. Select Properties. Select General Tab. Click Advanced Button and following dialog box appears:



Just select your desired option. In a similar way you can decrypt by just unchecking the option.

Kill unnecessary Processes


Sometimes processes are running which you never initiated. I am not talking about system processes but normal processes which are generally user-initiated. You should kill such processes. For example, many hackers migrate themselves to Notepad.exe and the user is unable to identify the hacker in their system.

Enable BitLocker


So far Bit Locker has not been bypassed by any attacker as far as I know. Thus, it is the most safe solution to go for, if you use Ultimate Version of Windows.



Disable StartUp Menu


To do this, Right click on your Taskbar. Select Properties.



Click on Start Menu Tab. Uncheck both "Store and Display Recently Opened Programs in Start Menu" and "Store and Display Recently Opened Items in the Start Menu and the Taskbar"



In case any image is unclear click to enlarge it. I hope you all find this post useful. Hope to see you all soon again. All comments and suggestions are welcomed. Have a great evening!

No comments:

Post a Comment

Kindly keep the comments clean and make quality comments that would be worthy in making this blog better! :)