Disable the creation of Admin shares (see How do I stop the default admin shares from being created?
• Use NTFS and remove Everyone access except for the directories that are part of the web documents, and for those directories only have Read access • It is possible to disable TCP ports on NT, and you could restrict the NT server to only accept packets on port 80 (web browser). This is discussed in “Is it possible to protect against Telnet attacks?” • If the server is part of your internal intranet use a firewall Q. How can I tell the role of my NT machine? A. There are several ways to do this, however the easiest is to type the command net accounts And at the bottom of the output, the Computer Role will be shown as one of the following: WORKSTATION – A normal NT Workstation machine SERVER – A standalone NT Server machine PRIMARY – A Primary Domain Controller (PDC) BACKUP – A Backup Domain Controller (BDC) Q. How can I stop a user logging on more than once? A. There is no way in NT to stop a user logging on more than once, however it is possible to restrict a workstation so that only
