Windows
NT Tips
Most
Recent Version: 4.0 service pack 6a (as of: 11/30/1999)
Microsoft
Knowledge Base
Questions:
1) I keep getting messages about
not having enough virtual memory.
2) How do I secure NT?
3) How do I create static MS Exchange ports?
4) How do I change disk IDs?
Answers:
1) I keep getting
messages about not having enough virtual memory.
First of all, NT might suggest to you to
increase the size of the pagefile. Try doing so. If this
does not work, check to make sure you have enough free disk space
for virtual memory. If you have less than 100-200 free MB,
move the pagefile to a larger partition or add a new disk.
2) How do I secure NT?
Some of the things you should
consider:
- Remove all protocol stacks except
TCP/IP, since IP is the only protocol that runs on the Internet
- Remove unnecessary network
bindings
- Disable all unnecessary accounts,
like guest
- Remove share permissions and
default shares
- Remove network access for everyone
(User Manger -> Policies ->User rights, "Access this
computer from the network")
- Disable unnecessary services
- Leave Event Logging (to report events)
- Leave RPC Service (used by explorer to open windows on GUI)
- Leave Protected Storage (if you are using MS Crypto API to
protect/access encryption keys)
- Leave FW-1/Raptor/RealSecure/etc security software
- Leave Plug n' Play if you are going to be adding/remove
hardware otherwise turn it off
- Enable audit logging
- Track the audit information
3) How do I create static
MS Exchange ports?
Microsoft Exchange Server uses port 135 and two
random ports for Remote Procedure Call (RPC) communication. To make
these ports static, you must make registry changes (Q148732)
- To configure the RPC Port for the
Microsoft Exchange Directory Service, go to:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MSExchangeDS\Parameters
Add the value "TCP/IP port" as DWORD value,
specifying the port to be used. The RADIX should be set to
decimal when entering the value.
- Configuring the RPC Port for the
Microsoft Exchange Information Store Service:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MSExchangeIS\ParametersSystem
Add "TCP/IP port".
- Configuring the RPC Port for the
Microsoft Exchange System Attendant:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MSExchangeSA\Parameters
Add "TCP/IP port".
4) How do I change disk
IDs?
- At a DOS prompt, type "vol"
and write down the 8 digit hex serial number (ID).
- Run the diskprobe
utility from the Microsoft Resource Kit for NT (actually, you
can use other disk editors if you have one).
- Choose "Drives\Logical"
and double-click the drive letter you wish to modify. The
drive handle 0 (below) will now specify the drive letter you
have chosen. Choose "Set Active", make sure you
uncheck the READ-ONLY box, and go back to the main menu.
Go to "Sectors\Read" and read sectors 0 to 1.
- For FAT16 partitions, go to the line
labeled 0020, and go over 8 columns. You will see your
disk ID in 4 reversed bytes. That is, if your original ID
were 0123-abcd, then you would see "CD AB 23 01".
Edit these numbers to what you want your disk ID to be
(remembering to reverse the byte order). Then, do a
"Sectors\Write."
- If you have an NTFS partition, use
the FAT16 instructions with the following exceptions: your
offset is row 0040, and count over 9 columns, and you must
reboot after writing.
DISCLAIMER: This support
site is provided as a FREE service to our customers. Every effort is made
to ensure it is complete and accurate. However, due to changing versions,
typos, different environments, etc. information may be inaccurate for your
site. Note that we do not assume responsibility for any problems you might
encounter using information provided in these pages. Please inform us of
any problems you encounter we will make every effort to correct this
information. Thank you.
Home |
Services |
Training |
Support |
Contact Us |
Search
Copyright 2006, Security Evolution, Inc.
