服务器设置脚本.doc_第1页
服务器设置脚本.doc_第2页
服务器设置脚本.doc_第3页
服务器设置脚本.doc_第4页
服务器设置脚本.doc_第5页
已阅读5页,还剩2页未读 继续免费阅读

下载本文档

版权说明:本文档由用户提供并上传,收益归属内容提供方,若内容存在侵权,请进行举报或认领

文档简介

echo off echo - echo -正在备份注册表 请稍后.- echo - reg export HKEY_LOCAL_MACHINE C:/reg_backup.reg echo - echo -注册表备份完成- echo - ping -n 3 nul echo - echo -安全配置正在改写 请稍候.- echo - ping -n 3 nul echo - echo -正在禁用空连接- echo - reg add HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlLsa /v restrictanonymous /t reg_dword /d 1 /f echo - echo -禁用空连接设置完毕- echo - ping -n 3 nul echo - echo -正在删除默认共享- echo - reg add HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServiceslanmanserverparameters /v AutoShareServer /t reg_dword /d 0 /f echo - echo -删除默认共享设置完毕- echo - ping -n 3 nul echo - echo -正在修改TTL值请稍后.- echo - reg add HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesTcpipParameters /v DefaultTTL /t reg_dword /d 53 /f echo - echo -TTL修改完毕- echo - ping -n 3 nul echo - echo -防止syn洪水攻击- echo - reg add HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesTcpipParameters /v SynAttackProtect /t reg_dword /d 2 /f reg add HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesTcpipParameters /v EnablePMTUDiscovery /t reg_dword /d 0 /f reg add HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesTcpipParameters /v NoNameReleaseOnDemand /t reg_dword /d 1 /f reg add HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesTcpipParameters /v EnableDeadGWDetect /t reg_dword /d 0 /f reg add HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesTcpipParameters /v KeepAliveTime /t reg_dword /d 300000 /f reg add HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesTcpipParameters /v PerformRouterDiscovery /t reg_dword /d 0 /f reg add HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesTcpipParameters /v EnableICMPRedirects /t reg_dword /d 0 /f echo - echo -防止syn洪水攻击设置完毕- echo - ping -n 3 nul echo - echo - echo - 系统服务修改 - echo - echo - ping -n 3 nul echo - echo -修改3389端口- echo - reg add HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlTerminal ServerWds dpwdTdstcp /v PortNumber /t reg_dword /d 44454 /f reg add HKEY_LOCAL_MACHINESYSTEMCurrentContro1SetControlTenninal ServerWinStationsRDPTcp /v PortNumber /t reg_dword /d 44454 /f echo - echo -修改PORT完毕- echo - ping -n 3 nul echo - echo -正在开启系统防火墙 请稍后.- echo - sc config sharedaccess start= auto & net start sharedaccess echo - echo -系统防火墙已开启- echo - ping -n 3 nul echo - echo -正在关闭共享打印服务- echo - sc config Spooler start= disabled sc config LanmanServer start= disabled sc config LmHosts start= disabled echo - echo -已关闭共享打印服务- echo - ping -n 3 nul echo - echo -正在关闭远程协助服务- echo - sc config RDSessMgr start= disabled echo - echo -已关闭远程协助服务- echo - ping -n 3 nul echo - echo -正在关闭远程注册表服务- echo - sc config RemoteRegistry start= disabled echo - echo -已关闭远程注册表服务- echo - ping -n 3 nul echo - echo -关闭自动硬件播放通知- echo - sc config ShellHWDetection start= disabled echo - echo -自动播放通知关闭- echo - ping -n 3 nul echo - echo -正在关闭替换凭据下的启动进程服务- echo - sc config seclogon start= disabled echo - echo -已关闭启动进程服务- echo - ping -n 3 nul echo - echo -IEEE 802.11 适配器的自动配置- echo - sc config WZCSVC start= disabled echo - echo -已关闭IEEE- echo - ping -n 3 nul echo - echo -客户端跟踪服务关闭- echo - sc config TrkSvr start= disabled sc config MSDTC start= disabled echo - echo -已关闭客户端跟踪服务- echo - ping -n 3 nul echo - echo -帮助中心关闭- echo - sc config helpsvc start= disabled echo - echo -已关闭帮助中心服务- echo - ping -n 3 nul echo - echo - echo - 系统权限加固 - echo - echo - echo - echo -C盘(系统盘) (administrators,system完全控制权限)- echo - cacls C: /t /c /g administrators:F system:F echo - echo -Common Files (everyone用户只读权限)- echo - Cacls C:Program FilesCommon Files /t /e /c /g everyone:R echo - echo -IIS Temporary Compressed Files (everyone用户更改权限)- echo - Cacls C:WINDOWSIIS Temporary Compressed Files /t /e /c /g everyone:C echo - echo -Microsoft.Net (everyone用户只读权限)- echo - Cacls C:WINDOWSMicrosoft.Net /t /e /c /g everyone:R echo - echo -Temporary ASP.NET Files (everyone用户更改权限)- echo - Cacls C:WINDOWSMicrosoft.NETFrameworkv1.1.4322Temporary ASP.NET Files /t /e /c /g everyone:C echo - echo -Temporary ASP.NET Files (everyone用户更改权限)- echo - Cacls C:WINDOWSMicrosoft.NETFrameworkv2.0.50727Temporary ASP.NET Files /t /e /c /g everyone:C echo - echo -Registration (everyone用户读取权限)- echo - Cacls C:WINDOWSRegistration /t /e /c /g everyone:R echo - echo -Temp (everyone用户更改权限)- echo - Cacls C:WINDOWSTemp /t /e /c /g everyone:C echo - echo -assembly (everyone用户读取权限)- echo - Cacls C:WINDOWSassembly /t /e /c /g everyone:R echo - echo -WinSxS (everyone用户读取权限)- echo - Cacls C:WINDOWSWinSxS /t /e /c /g everyone:R echo - echo -Fonts (everyone用户读取权限)- echo - Cacls C:WINDOWSFonts /t /e /c /g everyone:R echo - echo -System32 (everyone用户读取权限)- echo - Cacls C:WINDOWSSystem32 /t /e /c /g everyone:R echo - echo -msdtc (networkservice用户更改权限)- echo - Cacls C:windowssystem32msdtc /t /e /c /g networkservice:C echo - echo -ASP Compiled Templates (everyone用户更改权限)- echo - Cacls C:WINDOWSsystem32inetsrvASP Compiled Templates /t /e /c /g everyone:C echo - echo -*.exe (去除everyone用户权限)- echo - Cacls C:WINDOWSSystem32*.exe /e /c /r everyone echo - echo -cmd.exe (去除system用户权限)- echo - Cacls C:WINDOWSSystem32cmd.exe /e /c /r system echo - echo -net.exe (去除system用户权限)- echo - Cacls C:WINDOWSSystem32 et.exe /e /c /r system echo - echo -net1.exe (去除system用户权限)- echo - Cacls C:WINDOWSSystem32 et1.exe /e /c /r system echo - echo -msdtc.exe (everyone用户读取权限)- echo - Cacls C:WINDOWSSystem32msdtc.exe /e /c /g everyone:R echo - echo -dllhost.exe (everyone用户读取权限)- echo - Cacls C:WINDOWSSystem32dllhost.exe /e /c /g everyone:R echo - echo -sv
人人文库> 全部分类> 生活休闲 > 科普知识

温馨提示

  • 1. 本站所有资源如无特殊说明,都需要本地电脑安装OFFICE2007和PDF阅读器。图纸软件为CAD,CAXA,PROE,UG,SolidWorks等.压缩文件请下载最新的WinRAR软件解压。
  • 2. 本站的文档不包含任何第三方提供的附件图纸等,如果需要附件,请联系上传者。文件的所有权益归上传用户所有。
  • 3. 本站RAR压缩包中若带图纸,网页内容里面会有图纸预览,若没有图纸预览就没有图纸。
  • 4. 未经权益所有人同意不得将文件中的内容挪作商业或盈利用途。
  • 5. 人人文库网仅提供信息存储空间,仅对用户上传内容的表现方式做保护处理,对用户上传分享的文档内容本身不做任何修改或编辑,并不能对任何下载内容负责。
  • 6. 下载文件中如有侵权或不适当内容,请与我们联系,我们立即纠正。
  • 7. 本站不保证下载资源的准确性、安全性和完整性, 同时也不承担用户因使用这些下载资源对自己和他人造成任何形式的伤害或损失。

最新文档

评论

0/150

提交评论