Need advice on a setting in Local Secuirty Policy and....


  1. Posts : 14
    Windows 10 Pro
       #1

    Need advice on a setting in Local Secuirty Policy and....


    In the Local Security Policy on Windows 10 Pro Anniversary version 1607 there are 2 settings that I was wondering if I could adjust so there no way someone could access my computer remotely. It's under Security Settings then Local Policies, and then Security Options. The policies being Network access: Remotely accessible registry paths and Network access: Remotely accessible registry paths and sub-paths. Was wondering if it's safe to delete those paths since I don't do anything remotely wise. Hope that makes since. I hope the picture helps.

    Need advice on a setting in Local Secuirty Policy and....-local-policy-pic.png



    Second question if I'm just a home user and let's say i wanted to make it really secure is there any other "Security Options" in Local S.P. that I could change to make it more secure. I see when searching the internet that Microsoft comes out with these group policy security templates. Can a regular home user use those templates and if they could how come it's not like on the front page of Microsoft's webpage or easy to understand. Forgive me for being such a noob. Just trying to dodge all the malware and ransomware and virus's and Zero day whatever's .

    Sincerely,
    Is the internet even worth it anymore I spend more time trying to secure this thing than using it.

    Sincerely Crazy8:)
      My Computer


  2. Posts : 5,442
    Windows 11 Home
       #2

    1, Sure you can. But, if you disable services like Server, WebClient, Workstation, you do not have to worry about it at all.
    2, That is, what they are for. It is just tedious to do, but every little bit helps these days, so if you are willing, go for it.

    craazziee8 said:
    Is the internet even worth it anymore I spend more time trying to secure this thing than using it.
    Tell me about it, I am just trying to protect my computer and I ended up collecting tweaks, I do not even understand.
      My Computer


  3. Posts : 14
    Windows 10 Pro
    Thread Starter
       #3

    Thanks a lot TairikuOkami appreciate the help. Right now I have been using EMET a lot and seeing which programs and such I can apply to the safety of the EMET program. So far I get a good feeling about the EMET program and the great thing about it is it's free.

    Sincerely,
    "Having hope" Crazy 8
      My Computer


  4. Posts : 14
    Windows 10 Pro
    Thread Starter
       #4

    I actually just googled the darn policy and found this in case anyone else stumbles across my post wondering the same.
    https://technet.microsoft.com/en-us/...(v=ws.11).aspx
    and i quote, "Set this policy to a null value; that is, enable the policy setting, but do not enter any paths in the text box. Remote management tools, such as the Microsoft Baseline Security Analyzer and Microsoft Systems Management Server (SMS), require remote access to the registry. Removing the default registry paths from the list of accessible paths might cause these and other management tools to fail."
    so ya you can delete the values and really not worry about it because if you do delete it and find out that you need to re enter the deleted data that on the, "Explain" tab it tells you what the default values were. In case you wanted to use the above mentioned tools. And for myself I still have a lot more learning to do. Again, Thanks TairikuOkam this thread is answered and done.
      My Computer


  5. Posts : 3,257
    Windows 10 Pro
       #5

    Frankly, you are better off with a firewall. It will block access to those functions from outside your network.

    The problem here, is that these settings give you a false sense of security. Even setting these settings would not guarantee nobody could ever access your system remotely, since there are many ways to become compromised, even behind a firewall. For instance, if you are the victim of a drive-by-infection in your web browser, it can install software that allows an attacker to bypass any firewall (or these settings). The best defense against remote intrusion is vigilance.
      My Computer


  6. Posts : 14
    Windows 10 Pro
    Thread Starter
       #6

    Point taken thanks Mystere. Very sobering slap in the face but all so true. Would love to get some kind of hardware firewall someday but why bother I guess.
      My Computer


  7. Posts : 3,257
    Windows 10 Pro
       #7

    If you have a router from your cable company, chances are you already have a hardware firewall.
      My Computer


 

  Related Discussions
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 17:00.
Find Us




Windows 10 Forums