How to Secure Windows file Server

Its important to secure server with some safety steps by experts 

Your Windows file sever is Secure ? Have you hardened your Windows file servers yet? Follow these steps to make sure your sensitive files are adequately protected against unauthorized access.

Make sure your Windows file server is physically secure.

 

If an unauthorized person can gain physical access to your server, then you're at risk for having the entire machine or one of its hard drives will be stolen and walk out the door or the can transfer the data from that drive to their drive . In addition to ensuring physical security, you should also configure your system so that it is only bootable from an internal hard drive to prevent an unauthorized person  from starting your system from removable media. The BIOS and boot loader should then be protected with a strong password. Strong password should contain both upper and lower character, digits and special character as well like (@gtsHYJ653!*%QAZ%;).

 

Encrypt your Device


Using a system like Bit-Locker Software to ENCRYPT YOUR DEVICE  ensures your files remain secure even if your hard drive is stolen or is discarded insecurely after being replaced by an unauthorized person  . Using the drive on a server with a Trusted Platform Module (TPM) ensures that the use of BitLocker is transparent to administrators and users.


Keep the Windows file server off the Internet 


It is required for most Windows file Servers to be connected to the Internet to serve , so we cannot disconnect it from internet but we can use a firewall to restrict access from out side your LAN and antivirus to secure system . A lot of companies , banks ,universities are using old versions of windows file system and there is clear chance to find the vulnerability on that systems so latest antivirus will protect them.


Ensure the Windows file server is fully patched and up to date. 




Even if your Windows file server is secure  from the Internet, you can still keep its software up to date by running Windows Server Update Services (WSUS) on another server on your network it will download new updates . If keeping your file server off the Internet is not practical, then you should ensure that Windows Update is set to automatically download and apply patches – unless you have a process in place for downloading and testing patches manually before applying them do not download any other side . It's also worth checking that Internet Explorer Enhanced Security Configuration is enabled on your server, since it's unlikely you will be using the browser. You can do this from the control panel by checking the Internet Enhanced Security Configuration option via the Add Windows Components section.

Get rid of unnecessary software. 

 

There is almost certainly no need for software such as Flash, Silverlight, or Java on your server, and having them installed merely increases the attack surface that hackers can address. You can remove unnecessary from your server using the control panel applet.
 

 




 

  


 
 

Comments

Post a Comment

Popular posts from this blog

From Start to finish: Cracking a Windows Server 2012 R2 Administrator account

want you to imagine your best friend from college challenges you to a duel. Here’s the deal: you both graduated with honors from ivy league schools but your careers bifurcated down different paths.  You decided to work in corporate america but he started his own software company in Silicon Valley. Now you’re friend has a kinetic personality.  He’s incredibly smart, talks faster than you can think and really understand technology.  But he’s also full of hubris and lacks humility. One day over drinks, in a moment of spontaneity, he looks you straight in the eye and challenges you to a duel. He leans in and boasts: With a smug smirk on his face, he stretches out his hand for the shake. Would you shake on it? You decided to shake on it.  After all, it’s not going to cost you anything to accept the challenge. The first thing you need to do is figure out how you’re going to gain access to his corporation.  Are you planning to penetrate h...
Read more

How do I hack a Gmail account

Image
**Warning : Deep Web Content ahead.** You can hack your Gmail account password using the tool given below : Gmail Password Hack Online Tool This tool is completely free to use and works on all iOS/android smartphones and tablets as well pc. It can hack the password of any Gmail user if you have their correct email id or Google+ username. To hack any Gmail password in less than 5 minutes, just follow the easy steps below : Go to Hack Gmail Account Online tool (Hack Gmail Account Online) from any mobile/pc bowser. Enter victim’s email id or G+ username in the field and click Next. Wait for the server to hack the Gmail password of the victim. It can take 2–3 minutes so do not close the window. In the last step, you can download the hacked password instantly. The server will automatically log you into victim’s Gmail account. This tool can used to recover your own gmail password when you have forgotten the security question or recovery email. It works with 100% accu...
Read more

MIT App Inventor — How To Develop Awesome Android Apps Without Coding

Image
MIT App Inventor is a groundbreaking tool for developing Android applications without any prior programming and coding skills. Using this open source tool, one can convert his/her creative ideas into Android applications. As this utility is browser and cloud-based, you don’t need to download any software or store anything on your computer. A pp development is one of the most in-demand technical skills. However, making a polished and responsive app that’s free from bugs isn’t always simple. To develop a native mobile app , one also needs to have a clear idea of multiple aspects like the market for that app, available resources, and skills needed to write that app.Android app development isn’t any different from this opinion. However, if you’ve got your creative energy flowing and you have a bright idea in mind, all you need to do is grab a proper tool, start learning, and implement your ideas. But, what if you come from a non-coding background? Worry ...
Read more