TweakXP.com - How to Secure Windows XP & Office XP

How to Secure Windows XP
====================

1. Download and install Windows XP SP1 from:
( http://download.microsoft.com/download/whistler/SP/SP1/WXP/en-us/xpsp1_en_x86.exe )

2. Download and install Office XP SP1 & SP2 (if you have Office XP installed) from:
( http://download.microsoft.com/download/officexpstandard/sp/oxpsp1/w98nt42kmexp/en-us/oxpsp1.exe )

and..

( http://download.microsoft.com/download/officexpstandard/sp/oxpsp2/w98nt42kmexp/en-us/oxpsp2.exe )

Note: If you get a "Error 1328" during the install (Possibly because your key is invalid) you will need to download the administrative versions of the service packs:

( http://download.microsoft.com/download/officexpstandard/sp/oxpsp1/w98nt42kmexp/en-us/oxpsp1a.exe )

and..

( http://download.microsoft.com/download/officexpstandard/sp/oxpsp2/w98nt42kmexp/EN-us/oxpsp2a.exe )

For more information on updating Office using the administrative versions of the serivce packs, visit (This address has been removed, but you can use Google to view a 'cached' version of the page):
( notorious.dezines.com/notorious/articles/xpsp1.htm )

---------------

Windows XP SP2

The first security patch for Windows XP SP2 is available...

XP Security fix:IE SSL man-in-the-middle
This update resolves the "Certificate Validation Flaw Could Enable Identity Spoofing" vulnerability in Windows XP. Download now to prevent an attacker from attempting identity spoofing using certificates.

( http://download.microsoft.com/download/whistler/Patch/Q328145/WXP/EN-US/Q328145_WXP_SP2_x86_ENU.exe )

---------------

Download the Microsoft Baseline Security Analyzer from:
( http://download.microsoft.com/download/win2000platform/Install/1.0/NT5XP/EN-US/mbsasetup.msi )

This program will analyze your computer system and advise you on possible security problems and how to fix them.

---------------

Remove Unessessary Services
Start -> Settings -> Control Panel -> Administrative Tools -> Services

---------------

Remove IPC$ Share Remote Netbios Attack Vulnerability
1. Open Regedit
2. HKEY_LOCAL_MACHINE -> System -> CurrentControlSet -> Control -> Lsa -> restrictanonymous
3. Change "Value Data" from 0 to 1
4. This will disable remote logon to a null IPC$ share

---------------

Consider Installing a Firewall:
( www.zonealarm.com )

---------------

Make sure Microsoft Messanger is up to date (MS Messanger should automatically check for updates)

---------------

Download and run Ad-aware to remove any spyware on your system:
( http://www.lavasoftusa.com )

---------------

Headspin