Monday, October 19, 2009

Disable Recent Shares in Network Places

SkyHi @ Monday, October 19, 2009
Submitted by atomicrabbit

This restriction stops remote shared folders from being added to Network Places whenever you open a document in the shared folder.

Disabling this option can speed up network browsing as well as keep the My Network Places folder clean.

0 = track shares
1 = disable tracking
» Example Registry Tweak

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]
"NoRecentDocsNetHood"=dword:00000001

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]
"NoRecentDocsNetHood"=dword:00000001

Reference: http://unattended.msfn.org/unattended.xp/view/registry/90/SESSID=05901bb54208da41953351329d097d80/



Disable NetBios (Windows) And Increase Security - Increase your computer security
Disable NetBIOS

Increase your security

If NetBIOS is enabled
Your Files and Folders , Work Group-name , Computer name , Loging- name will be shared in Internet

in Windows 2000

1- open Windows Explorer
2- Right click on My Network places and select properties
3- Click Internet protocol TCP/IP and select properties
4- Click on Advanced and then WINS
5- Select Disable NetBIOS over TCP/IP and click ok
6- Restart your computer

If Windows displays “This connection has an empty … " message, ignore it

Reference: http://www.astahost.com/info.php/Disable-Netbios-Windows-Increase-Security_t8863.html


Disable automatic share and print discovery in Windows XP
Windows XP automatically searches the network for shares and printers upon connecting to the network. This is probably useful in a SOHO or home network but not the enterprise. To disable XP automatic discovery:

* In Explorer, click Tools
* Click Folder Options
* Click the View tab,
* Uncheck Automatically Search for Network Folders and Printers in Advanced settings list.

It is important to disable this setting in Windows XP because it is the basis of a seriouse security flaw in XP. When you click My Network Places, your logon password may be transmitted automatically to numerous unspecified computers on the LAN. Windows XP tries to acquire the shared resources list of all computers on the LAN. At that time, the users local logon password is used when the password for the shared resource is not known. Your PC transmits the LMhash version of you password.

If there are NT4.0 or any other pre-Windows 2000 PCs on the LAN, XP will transmit your password to the pre-Windows 2000 PCs during its share and print search. It transmits the LM hash which is significantly weaker than XP or Windows 2000 hashes. In order to protect the LM hash, XP has a registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\NoLMHash which if set to 1 will prevent XP or Windows 2000 from generating the LM hash. pwdump will not be able to acquire the LM hash, which is a good thing.

Saddly, NoLMHash does not affect LM authentication. Even if NoLMHash has been set, XP will still transmit the LM hash to a NT4.0 machine when My Network Places is clicked.

http://www.windowsnetworking.com/nt/xp/atips/atips23.shtml