In the Local Security Policy on Windows 10 Pro Anniversary version 1607 there are 2 settings that I was wondering if I could adjust so there no way someone could access my computer remotely. It's under Security Settingsthen Local Policies, and then Security Options. The policies being Network access: Remotely accessible registry pathsand Network access: Remotely accessible registry paths and sub-paths. Was wondering if it's safe to delete those paths since I don't do anything remotely wise. Hope that makes since. I hope the picture helps.
Second questionif I'm just a home user and let's say i wanted to make it really secure is there any other "Security Options" in Local S.P. that I could change to make it more secure. I see when searching the internet that Microsoft comes out with these group policy security templates. Can a regular home user use those templates and if they could how come it's not like on the front page of Microsoft's webpage or easy to understand. Forgive me for being such a noob. Just trying to dodge all the malware and ransomware and virus's and Zero day whatever's .
Sincerely,
Is the internet even worth it anymore I spend more time trying to secure this thing than using it.
Sincerely Crazy8
1, Sure you can. But, if you disable services like Server, WebClient, Workstation, you do not have to worry about it at all.
2, That is, what they are for. It is just tedious to do, but every little bit helps these days, so if you are willing, go for it.Tell me about it, I am just trying to protect my computer and I ended up collecting tweaks, I do not even understand.
Thanks a lot TairikuOkami appreciate the help. Right now I have been using EMET a lot and seeing which programs and such I can apply to the safety of the EMET program. So far I get a good feeling about the EMET program and the great thing about it is it's free.
Sincerely,
"Having hope" Crazy 8
I actually just googled the darn policy and found this in case anyone else stumbles across my post wondering the same.
and i quote, "Set this policy to a null value; that is, enable the policy setting, but do not enter any paths in the text box. Remote management tools, such as the Microsoft Baseline Security Analyzer and Microsoft Systems Management Server (SMS), require remote access to the registry. Removing the default registry paths from the list of accessible paths might cause these and other management tools to fail."
so ya you can delete the values and really not worry about it because if you do delete it and find out that you need to re enter the deleted data that on the, "Explain" tab it tells you what the default values were. In case you wanted to use the above mentioned tools. And for myself I still have a lot more learning to do. Again, Thanks TairikuOkam this thread is answered and done.
Frankly, you are better off with a firewall. It will block access to those functions from outside your network.
The problem here, is that these settings give you a false sense of security. Even setting these settings would not guarantee nobody could ever access your system remotely, since there are many ways to become compromised, even behind a firewall. For instance, if you are the victim of a drive-by-infection in your web browser, it can install software that allows an attacker to bypass any firewall (or these settings). The best defense against remote intrusion is vigilance.
Point taken thanks Mystere. Very sobering slap in the face but all so true. Would love to get some kind of hardware firewall someday but why bother I guess.
If you have a router from your cable company, chances are you already have a hardware firewall.