Securing XP Pro

Discussion in 'Windows XP Help and Support' started by Varsel, Jul 26, 2014.

  1. Varsel

    Varsel New Member

    Joined:
    Jul 26, 2014
    Messages:
    3
    Likes Received:
    0
    Various books and websites advise getting rid of certain administrative shares (usually FAX$ ,IPC$, & PRINT$) to better secure the OS. I've tried several ways to uninstall or disable, but every time I turn off the PC, these shares return. After a lot of searching, I found this explanation.

    http://support.microsoft.com/kb/314984

    What is the mechanism that is doing this:
    "Hidden administrative shares that are created by the computer (such as ADMIN$ and C$) can be deleted, but the computer re-creates them after you stop and restart the Server service or restart your computer"
    ...and how do I eliminate its ability to undo what I delete, disable, or uninstall?
     
  2. Fixer1234

    Fixer1234 Senior Member

    Joined:
    Aug 3, 2012
    Messages:
    481
    Likes Received:
    37
    If you are absolutely intent on retaining XP, the only obvious way to do what you want is to remove some of the Pro functionality. You could try to find an iso for the Home Edition and downgrade your installation (looks like you might have to go to a 32 bit OS with that route, which wouldn't necessarily hinder your use), or find a way to dismantle portions of the Pro OS.

    Just another alternative to consider: you sound like you know your way around the computer, or at least aren't intimidated by the need to learn and explore to solve your problem. You would be a good candidate for trying Linux as an XP replacement. If you haven't already, just create a liveDVD of one or more offerings and see what you think without installing anything on your computer. If you find a candidate you like, you can load it on a USB stick or external hard drive and use it without even affecting your XP installation. If you are running Pro, I'm guessing the computer has at least 1 GB of RAM. Something like Linux Mint Mate (http://blog.linuxmint.com/?p=2627) would run easily and would be an easy transition from XP (it's pretty XP-like), and it would probably be faster than XP.
     
    Varsel likes this.
  3. ussnorway

    ussnorway Windows Forum Team
    Staff Member Premium Supporter

    Joined:
    May 22, 2012
    Messages:
    2,538
    Likes Received:
    316
    1. What the articles should be advising is too stop using unsecured networks designed from 10-20 years ago and upgrade your entire network to a modern ip 6 based model which has simple to use and much safer security built into it from the ground up. That’s not the same thing as just turning off a hidden share which does not really prevent a hacker from entering your network.

    2. A hidden share is just a normal share with a $ symbol added on… it just tells the explorer to not show the share (by default) and adds no extra security beyond this so if the user knows that the share is there… even if they aren’t sure of the exact path then it doesn't make any difference to the networks viability.

    3. It is most likely system restore that is putting the files back in but it could also be the efi drive detecting the error... just depends on which service pack level you are using.

    4. As a practical matter I agree with what Fixer1234 posted with perhaps a commercial or Edian firewall between the machine and other network parts… at least between the internet but without knowing what you expect this system to do & perhaps some idea of a budget it is very hard to give solid advice.

    5. As a final note, ime stripping xp of too much network infrastructure will just make the system slow and unstable.
     
  4. Varsel

    Varsel New Member

    Joined:
    Jul 26, 2014
    Messages:
    3
    Likes Received:
    0
    I do not see any need to downgrade to Home Edition. XP Pro SP3 is 32-bit, and I have already trimmed away the useless crud (Telnet, IRC, System Restore, and so on). Whatever hidden code that resurrects the administrative $hares, index.dat files, etc., failed to stop me from eliminating the useless junk. That tells me FAX$, IPC$, and PRINT$ has some special protection (beyond its Harry Potter cloak of invisibility, which I ripped away), and I need to target it so that when I jettison something it stays gone...permanently.

    Already fooling around with Linux. Have Netsecl installed on the other HDD for use on risky sites, and use Puppy Linux as Live CD for its speed-demon ability.
     
  5. Varsel

    Varsel New Member

    Joined:
    Jul 26, 2014
    Messages:
    3
    Likes Received:
    0
     

Share This Page

Loading...