Hi,
In this topic i'm trying to explain some tips and tricks about securing windows ...
#1 :: RPC Service ::
Few months ago Blaster worm has infected a lots of computers and so .... you know all , it comes to a securing hole in Windows ( 2000,XP,2003 ) , and as far as i knew about four vulnerabilities has been discovered , microsoft has realased some patches but the best way is disabling DCOM Service , to disable this service follow this stepes :
1 . Enter regedit in run menu ( start menu ) and press enter
2 . Go to this key [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Ole]
and change "EnableDCOM"="Y" value to "EnableDCOM"="N" .
after this you have to reboot system for taking effect on disabling DCOM :cheff:

Maybe some friends ask about "What's RPC DCOM ?", we can say exactly : RPC is an ability to execute code or a program from a remote source ( between client and server ) , and what's the benefits of disabling RPC DCOM ? we can protect ourself against hacking attacks , i said about 4 security holes of this service has been discovered , ok let's explain about another tips and tricks ...
#2 :: NetBIOS over TCP/IP ::
What's does it do ? NetBIOS over TCP/IP is typically used on Windows systems to transport the CIFS protocol (also known as SMB). CIFS is the protocol behind resources sharing (typically, file and printer sharing . So maybe you ask about " why it must be disabled ? " , I have to say most of the time it's one of the best ways for attackers to launch DoS ( Denial of Service ) attacks or crack our administrator password !
How to disable it ?
For each your active Network and Dial-up Connection, select
Properties and choose Properties of Internet Protocol (TCP/IP). Click on
the Advanced button, select the WINS tab and check Disable NetBIOS over TCP/IP .

#3
Note : If you need using IIS , don't do this tip :

On Windows 2000, IIS 5 runs by default and is composed of SMTP, HTTP and IIS administration services. To close TCP ports 25, 80, 443, UDP port 3456, one port used by IIS administration website (4983 in our example) and two ports, higher than 1023 for RPC services, these services must be stopped.
The quickest way to stop these services is to stop the iisadmin service (other services depend on it):

C:\WINNT>net stop iisadmin
The following services are dependent on the IIS Admin Service service.
Stopping the IIS Admin Service service will also stop these services.

#4
Closing UDP Port 500 "IPsec Service"
UDP port 500, used by IKE protocol (Internet Key Exchange) can be closed by
stopping IPsec services service.

C:\WINNT>net stop policyagent
The IPSEC Services service is stopping.
The IPSEC Services service was stopped successfully.

#5
Closing "Distributed Transaction Coordinator"
Distributed Transaction Coordinator service is enabled by default on a Windows 2000 server and opens TCP port 3372, and one TCP port higher than 1023 (1025 in my example).

Stopping this service closes two TCP ports:

C:\WINNT>net stop msdtc
The Distributed Transaction Coordinator service is stopping.
The Distributed Transaction Coordinator service was stopped successfully.

1. this could have been posted in one post
2. might be considered as spam..

oh.. i forgot
3. nice article :D

And don't forget to update at windowsupdate

Yeah , the first way in securing windows or other softwares is Update to latest patches and updates :cap: