Enabling File and Folder Auditing

File and folder auditing is enabled and disabled using either Group Policy (for auditing domains, sites and organizational units) or local security policy (for single servers). To enable file and folder auditing for a single server, select Start -> All Programs -> Administrative Tools -> Local Security Policy. In the Local Security Policy tool, expand the Local Policies branch of the tree and select Audit Policy.   Double click on the Audit Object Access item in the list to display the corresponding properties page and choose whether successful, failed, or both types of access to files or folders may be … Continue reading Enabling File and Folder Auditing

Configuring Windows Live Messenger through the One Care Personal Firewall

Configuring Windows Live Messenger through the One Care Personal Firewall 1. From the system tray, near the system clock, right click on the Windows Live One Care Icon to open a short-cut menu.  2. From the short-cut menu click on Open Windows Live One Care to bring up the Windows Live One Care console.    2.a. From the Windows Live One Care window click on View or Change Settings under Other Tasks to open the Settings window .    2.b. In the Windows Live One Care Settings window click on Firewall followed by Advanced Settings to open the Windows Live … Continue reading Configuring Windows Live Messenger through the One Care Personal Firewall

Configuring Windows Live Messenger through the Windows XP firewall

Configuring Windows Live Messenger through the Windows XP firewall 1. Launch the Windows Firewall.  1.a. Click on START and RUN to open the RUN Window.    1.b. In the RUN window type in CONTROL FIREWALL.CPL and hit Enter to open the Windows Firewall settings window.    2. From the Windows Firewall settings windows.  3. Click on the Exceptions tab to view the list of programs registered with the firewall and that are permitted or blocked access to the Internet.    4. To add Windows Live Messenger through the Windows XP firewall, click on Add Program below the Programs and Services … Continue reading Configuring Windows Live Messenger through the Windows XP firewall

New IE7 security feature.

In the new IE7, it will include a new feature called ‘Delete Browsing History’ which will let the users to control the data stored by the browser easily. By using this feature, we can tighten the security of IE easily.   For example,  we can use a single setting page to control all of the internet data saved in IE. Such as the history, cookies, web caches, internet password can be cleaned easily.   We don’t need to browse to difference setting page to clean those data.   Here is a sample of the setting page:   After all, in the old day when … Continue reading New IE7 security feature.

How to fix corrupted IPSec policy on W2K3 DC

On Windows Server 2003 DC, if the IPSEC policy was corrupted, the server machine couldn’t determine what traffic was allowed and what traffic wasn’t, so it took the safe route and discarded all traffic that wasn’t permitted by the highly restrictive boot-time policy exemptions.In order to fix it, we need to fix some registry keys from the command line:  REG DELETE HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\   Policy\Local /F  REG ADD HKLM\System\CurrentControlSet\Services\IPSEC /V    Start /T REG_DWORD /F /D 1  regsvr32 -s polstore.dllWhen the policy file corrupted and couldn’t be read, IPSec will be defaulted to “Block” mode, it will blocks most traffic except DHCP, which the computer would need to start up. … Continue reading How to fix corrupted IPSec policy on W2K3 DC

Where to start in Microsoft Security?

I can recommend you to browse http://www.microsoft.com/technet/security/default.mspx as a top level page to find out what’s important with security from a technical perspective. Besides, there are a Link called “Want Less Technical Detail?” which is suitable to end users.You can refer you family or friends to visit this link and view the short videos about preventingMalware, Phishing, Pharming, Spam…etc.