Even though there are so many advanced secure settings set default in Windows 8 computer, if we want to protect it better, it’s necessary to do basic and general settings good first for Windows 8. Now the following lists 10 secure setting options we could do.
1. Prevent malicious Ping attack
Navigate to Control Panel – System and Safety – Administrative Tools – Windows Firewall with Advanced Security – Import Policy. Choose Custom – All Programs option. Set protocol type parameter of this policy as “ICMPv4”. And set all local ports and remote port parameter as “All the ports”. Later, set this policy matching any IP address. At last, select “prevent link” option.
2. Type “regedit” in start search box to enter regedit list.
Choose HKEY_LOCAL_MACHINE, and find SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules. Select Authority. Add account “Everyone”, and change “full control” permission to “rejected”.
3. Type “gpedit.msc” to run Local Group Policy Editor. Choose Computer Configuration – Administrative Templates – Windows Components – Internet Explorer – Security Features – Restrict File Download. Find Internet Explorer Processes in “Restrict File Download” option. Select “Enabled” and OK.
4. In Local Group Policy Editor, choose Computer Configuration – Windows Settings – Security Settings – Local Policies – User Right Assignment. Look for “Access this computer from network” and delete all the accounts list there.
5. The same in Local Group Policy Editor, choose Computer Configuration – Administrative Templates – Network – Network Connections – Windows Firewall – Standard Profile. Find the option “Windows Firewall: Protect all network connections” and make it “Enabled”.
6. In Local Group Policy Editor, select Computer Configuration – Administrative Templates – Windows Components – Windows Logon Options. Choose “Display information about previous logons during user logon” and make it “Enabled”.
7. Enter user account management interface by “control user passwords2”. Click “Requires the user to press Ctrl + Alt + Delete” option and let it work.
8. Remote Setup. The remote desktop only allows computer with network level authority to be connected.
9. Run local group policy editor, choose User Configuration – Administrative Templates – Network – Networks. Select “Ability to delete all user remote access connections”. Make it work for computer.
10. Type “gpedit.msc” in Start box, run Local Group Policy Editor.
Turn to Computer Configuration – Windows Settings – Security Settings – Local Policies – Security Options. Find “User Account Control: Run all administrators in Admin Approval Mode” and make it “Disabled”.