UCD Windows Security Checklist
UCD Windows Security Checklist
11. Disable or uninstall all unnecessary Windows services and features e.g print service,
file and printer sharing, netbios, etc
12. Remove or disable all Internet browsers (Windows feature > disable IE) or if
absolutely required enable IE with enhanced security configuration.
13. To protect against phishing (and malware) attacks never access email on server and
remove all email clients.
14. Enable user account control (UAC) so that system changes require administrator level
permissions.
15. Check that only approved users can access the server and that they only have the
minimum privileges necessary. Do not use generic accounts and remove unnecessary
accounts such as guest.
16. Use SSL for all websites. This is a requirement for any website that requires
authentication. Contact [email protected] for free SSL certificates.
17. Do not collect or process credit card payments on any server without contacting
[email protected] in advance.
18. Run Microsoft baseline security analyser to check security setting.
19. Once you have applied the above hardening recommendations then contact
[email protected] for free vulnerability scan.