杭州交通信息网琛德保险代理骗局:做网站时,把服务器上的EveryOne用户权限全部打开是不是不安全?
来源:百度文库 编辑:杭州交通信息网 时间:2024/05/09 08:25:31
1.权限设置
无关的盘设guest权限低
GUESTS 全部拒绝
网站目录权限设为GUESTS 全部允许
C:\Program Files\Common Files 开放Everyone 默认的读取及运行 列出文件目录 读取三个权限
C:\WINDOWS\ 开放Everyone 默认的读取及运行 列出文件目录 读取三个权限
C:\WINDOWS\Temp 开放Everyone 修改,读取及运行,列出文件目录,读取,写入权限
2000系统
cacls c:\WINNT\system32\shell32.dll /e /d guests
cacls c:\WINNT\system32\wshom.ocx /e /d guests
cacls C:\WINNT\system32\Cmd.exe /e /d guests
cacls C:\WINNT\system32\net.exe /e /d guests
cacls C:\WINNT\system32\net1.exe /e /d guests
cacls C:\WINNT\system32\cacls.exe /e /d guests
cacls C:\WINNT\system32\netstat.exe /e /d guests
cacls C:\WINNT\system32\ftp.exe /e /d guests
2003系统
cacls c:\windows\system32\shell32.dll /e /d guests
cacls c:\windows\system32\wshom.ocx /e /d guests
cacls C:\windows\system32\Cmd.exe /e /d guests
cacls C:\windows\system32\net.exe /e /d guests
cacls C:\windows\system32\net1.exe /e /d guests
cacls C:\windows\system32\cacls.exe /e /d guests
cacls C:\windows\system32\netstat.exe /e /d guests
cacls C:\windows\system32\ftp.exe /e /d guests
net stop "server"
2.设置注册表
搜索
WScript.Network
WScript.Network.1
WScript.Shell
WScript.Shell.1
Shell.Application
Shell.Application.1
{093FF999-1EA0-4079-9525-9614C3504B74}
{72C24DD5-D70A-438B-8A42-98424B88AFB8}
{13709620-C279-11CE-A49E-444553540000}
全部删除
MSSQL安全
use master
EXEC sp_dropextendedproc 'xp_cmdshell'
EXEC sp_dropextendedproc 'Sp_OACreate'
EXEC sp_dropextendedproc 'Sp_OADestroy'
EXEC sp_dropextendedproc 'Sp_OAGetErrorInfo'
EXEC sp_dropextendedproc 'Sp_OAGetProperty'
EXEC sp_dropextendedproc 'Sp_OAMethod'
EXEC sp_dropextendedproc 'Sp_OASetProperty'
EXEC sp_dropextendedproc 'Sp_OAStop'
EXEC sp_dropextendedproc 'Xp_regaddmultistring'
EXEC sp_dropextendedproc 'Xp_regdeletekey'
EXEC sp_dropextendedproc 'Xp_regdeletevalue'
EXEC sp_dropextendedproc 'Xp_regenumvalues'
EXEC sp_dropextendedproc 'Xp_regread'
EXEC sp_dropextendedproc 'Xp_regremovemultistring'
EXEC sp_dropextendedproc 'Xp_regwrite'
drop procedure sp_makewebtask
性能优化
Windows Registry Editor Version 5.00
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]
"NoRecentDocsMenu"=hex:01,00,00,00
"NoRecentDocsHistory"=hex:01,00,00,00
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
"DontDisplayLastUserName"="1"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"restrictanonymous"=dword:00000001
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\lanmanserver\Parameters]
"AutoShareServer"=dword:00000000
"AutoShareWks"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters]
"EnableICMPRedirect"=dword:00000000
"KeepAliveTime"=dword:000927c0
"SynAttackProtect"=dword:00000002
"TcpMaxHalfOpen"=dword:000001f4
"TcpMaxHalfOpenRetried"=dword:00000190
"TcpMaxConnectResponseRetransmissions"=dword:00000001
"TcpMaxDataRetransmissions"=dword:00000003
"TCPMaxPortsExhausted"=dword:00000005
"DisableIPSourceRouting"=dword:00000002
"TcpTimedWaitDelay"=dword:0000001e
"TcpNumConnections"=dword:00004e20
"EnablePMTUDiscovery"=dword:00000000
"NoNameReleaseOnDemand"=dword:00000001
"EnableDeadGWDetect"=dword:00000000
"PerformRouterDiscovery"=dword:00000000
"EnableICMPRedirects"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NetBT\Parameters]
"BacklogIncrement"=dword:00000005
"MaxConnBackLog"=dword:000007d0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\AFD\Parameters]
"EnableDynamicBacklog"=dword:00000001
"MinimumDynamicBacklog"=dword:00000014
"MaximumDynamicBacklog"=dword:00007530
"DynamicBacklogGrowthDelta"=dword:0000000a