Chapter 17. Security and Auditing

Introduction

The operating systems produced by Microsoft are infamous for their lack of security, but in Microsoft’s defense, they made many trade-offs early on to make Windows easier to use and “on by default” instead of “secure by default.” With Windows XP, especially after Service Pack 2, the operating system is much more secure after installation compared to its predecessors. But that is only part of the story. Computers cannot lie in state and remain secure. You have to be proactive and play an active role in keeping your systems secure.

And that is what this chapter is about. We cover several security best practices that every user should consider when maintaining Windows XP systems. This chapter is by no means comprehensive, but it does cover many of the basic security precautions that all users should consider.

Basic Tips

Before we dive into recipes, we’re going to review a few general security precautions. Again, this isn’t a comprehensive list, but if you did these and nothing else, you would be doing better than most people.

Understand Microsoft’s 10 immutable laws of security

Microsoft discusses 10 laws of security on the TechNet web site: http://www.microsoft.com/technet/archive/community/columns/security/essays/10imlaws.mspx.

Take some time to understand each law (if they aren’t self-evident). These laws are some of the most basic tenants of computer security, especially when you are dealing with Microsoft technologies.

Protect physical access ...

Get Windows XP Cookbook now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.