Posts tagged “security”.

Tuning the Windows environment – Windows Folder Sharing

Windows Folders Sharing (Windows XP)

To get full control of your Folder sharing options, you may need to modify the Folder Options settings.

In the Windows explorer menu, select ‘Tools’. In the ‘Tools’ pull-down menu, choose the ‘Folder Options’. The Folder Options window has a ‘View’ Tab which lists the Advanced Settings. In the Advanced Settings, untag the ‘Use simple file sharing’ (see Dutch example below):


You may apply these settings only to one folder or all folders. Once this setting is applied, you will be able to control the access by user and by access type (read/write/etc.).

Read also the NetBIOS security settings.

Authentication: There’s a good chap!

Each provider makes its own choices for authentication. Protocols may vary as new ones become available on the market. Encryption technologies and Intranet security standards challenge (read conflict with) the authentication protocols. While in the earlier days, some providers used clear text logon scripts (like CompuServe) for PPP (Point-to-Point Protocol) connections, today PAP (Password Authentication Protocol) and, better, CHAP (Challenge Handshake Authentication Protocol) is used. The smart ones will support all three types (for compatibility). Be aware chaps, that some providers may only support one protocol. That’s were trouble starts: your (favorite Point-to-Point Protocol) software must be able to support the chosen (read forced) authentication protocol. Advanced software will include options to select either of the protocols or even negotiate with the server. However, limitations may occur and even worse, some vendors do not even mention which protocol selection they embeded. It gets even more complex when tunneling is used or needed for security. Many providers used the EnterNet client (and so did the ‘TurboLine’ provider Belgacom). Note that the  MAC version did not offer a selection option between PAP or CHAP. Information about this MAC client setup is published on the EnterNet pages.
The Alcatel SpeedTouch Home works fine with the EnterNet MAC client. The RASPPPOE client is preferred for Windows 2000 (tested with the Belgacom TurboLine and SkyNet GO).
The Thomson SpeedTouch 510 works fine with the native Windows XP PPPOE client and the EnterNet 300 client (tested with Wanadoo eXtense 512k).
Many other configuration modes are possible.
Tips and Tricks published by D. Petri



Tuning the Windows environment – Netbios Security

Netbios Security
In Windows XP, you can secure your files from the Internet and disable Netbios over IP in the TCP/IP protocol settings (Advanced options). Windows uses the NetBIOS protocol to share files and print services over your home LAN. By default, NetBIOS is routed over TCP/IP and as such creates a security vulnerability on your PC. Check your TCP/IP protocol bindings and disable file and printer sharing. In the advanced TCP/IP settings, under the WINS tab, disable NetBIOS over TCP/IP.
Install IPX/SPX. IPX/SPX is not installed by default. If you need to share files and printers, then install Novell’s IPX/SPX powerfull protocols. In the Network Connection’s Properties, choose Install and Protocol: NWLink IPX/SPX/NetBIOS.
Make sure the network bindings are adjusted. This you can modify with the Network Connections Advanced Menu Option ‘Advanced Settings’ in the ‘Adapters and Bindings‘ tags. Under the Start menu, select ‘Network Connections’. In the Network Connections window, select ‘Advanced’ from the top menu. In the pull-down menu, go to ‘Advanced Settings’. The Advanced Settings show the ‘Adapters and Bindings’ with the enabled bindings for each Connection. Make sure only NWLink IPX/SPX/NetBIOS is enabled (see Dutch example below):

Read also the Step-by-step procedure for Network Bondage on the Shields Up! pages.