Security defense

Method 1: WMI’s invasion of the first target host needs to be the administrator user name and password, the user is often careless system will be the default Administrator account password left blank, gave hackers the opportunity. We can account for the establishment of a “tough” password, so it will be difficult to decipher hackers administrator password, WMI’s invasion of the risk on a very small.

Method 2: The closure of 135 ports or Windows Management Instrumentation service WMI can prevent the invasion, but WMI service system of basic services, closing it will cause a system crash, so we can start from the closure of ports, use the built-in system “TCP / IP filter “function can do it. Open the control panel, the “network connection” in local connection icon, click the right mouse button, select “Properties” and then double-click to open a dialog “Internet protocol (TCP / IP)”, then click on the following “Advanced” button to open the “High TVP / IP Settings” dialog and switch to the “Options” tab, double-click the “TCP / IP screening”, where you can set up the need to close the port. Close the necessary ports, hackers will not be able to connect WMI service.

Bookmark:Digg Del.icio.us Reddit