Home|About IS&T|Contact Us|For IS&T Staff

Search Advanced Search

 

Introduction

Windows XP Professional provides better security than earlier versions of Windows, and many of XP's security features were either improved or enhanced with the release of Service Pack 2 (SP2). This document provides five important tips for securing your Windows XP system at MIT. For additional security guidelines for advanced users and system administrators, see Windows XP Professional: Security Guidelines for Administrators.

Notes:

• You must be logged on using an Administrator account to perform most tasks outlined in this document.
• Windows XP introduces a new look for the Control Panel, called Category View. For help with using Category View or reverting back to the old Control Panel look see Why does my Control Panel look different?

Tip #1: Back up your Windows XP System and Data Regularly

Visit the Backup at MIT web page and the TSM product pages for information about obtaining and using Tivoli Storage Manager (TSM) to back up your system and your data at MIT.

Tip #2: Update Windows XP to Service Pack 2 (SP2)

SP2 provides important updates and new security features that include:

• an improved Windows firewall
• better power management
• new Security Center
• a pop-up blocker for Internet Explorer
• improved wireless networking

SP2 also provides additional safeguards against malicious attacks from viruses and worms including better network protection, memory protection, e-mail handing, web browsing security, and computer maintenance.

Tip #3: Keep Windows XP current using MIT's Windows Automatic UpdateService (WAUS).

The MIT Windows Automatic Update Service (WAUS) enables the MIT community to utilize Microsoft's "Automatic Update" feature with a more conservative selection of patches—focused on critical security updates—than those available directly from Microsoft. This service may be used by MIT faculty, staff, and students on MIT-owned and personal machines.

This is the preferred method for you to receive Windows updates at MIT, including Service Pack 2

SP2 will not be deployed through WAUS until testing at MIT wraps up and any major issues that surface are resolved.

Tip #4: Use Virus Protection Software and Ensure It is Up-to-Date

See Virus Protection at MIT for information about obtaining and using virus protection software at MIT.

Tip #5: Use Strong Passwords and Update Them Regularly

For password guidelines, see Guidelines for Choosing a Password. At minimum, your Windows XP passwords should be :

• different from your Athena password
• 7 to 14 characters long
• a mix of uppercase and lowercase characters and numbers and symbols

Your Windows XP passwords should NOT be:

• found in any dictionary
• blank
• anything that remotely resembles "password" or "pass" or "admin" or "administrator"

It is recommended that you change your passwords regularly and make the new passwords significantly different from previous ones. And remember, passwords won't work unless you use them! When you step away from your computer, always lock or log off the computer (or turn on a password protected screensaver) to prevent unauthorized access. Further, if you are not running scheduled events (e.g., VirusScan or definition updates, defragmenting), it is recommended that you turn off your computer at the end of the day.