Stories
Slash Boxes
Comments

SoylentNews is people

Keeping XP Secure

posted by LaminatorX on Wednesday March 05 2014, @07:30AM   Printer-friendly
from the unplugging-the-network-cable dept.

Appalbarry writes:

"Microsoft is about to abandon Windows XP to the wolves. Fair enough it's ancient. However, there are still going to be a lot of XP boxes out there, and a fair number of them are unlikely to ever get upgraded until the hardware dies.

My question is: what's available to help make this old OS stay reasonably secure and safe for the people who can't or won't abandon it?

Over the years I've been through Central Point Antivirus, Norton, McAfee, AVG, stuff like Zone Alarm, and of course the various Microsoft anti-malware offerings. But since moving over to Linux I really haven't kept up on the wild and wonderful world of Windows security tools.

Suggestions?"

 
This discussion has been archived. No new comments can be posted.
Keeping XP Secure | Log In/Create an Account | Top | 73 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

  • (Score: 4, Interesting) by gallondr00nk on Wednesday March 05 2014, @09:06AM

    by gallondr00nk (392) on Wednesday March 05 2014, @09:06AM (#11223)

    I've decided to keep an XP box simply because of hardware issues. It's only really used for older games, and barely gets online.

    If you want to install x64 Windows 7, it mandates having signed drivers. There doesn't seem to be a way of getting around it. So this means my Adaptec SCSI card, despite having Windows 7 and Vista drivers, won't install because Adaptec understandably didn't want to fork out $$$ for driver signing on legacy hardware.

    If it becomes a problem , I'll probably just install 32 bit Windows 7 (which doesn't require driver signing), but that means giving up extra RAM. 7 in any form also means giving up a loyal but ancient colour laser printer.

    You've got to love an OS that arbitrarily dictates terms to you..

    The most obvious advice I'd give is *don't log in as admin*. You can escalate permissions just fine in most scenarios, though it isn't as seamless as 7/Vista UAC.

    Starting Score:    1  point
    Moderation   +2  
       Interesting=1, Informative=1, Total=2
    Extra 'Interesting' Modifier   0  
    Karma-Bonus Modifier   +1  
    Total Score:   4  

  • (Score: 5, Informative) by damnbunni on Wednesday March 05 2014, @10:38AM

    by damnbunni (704) on Wednesday March 05 2014, @10:38AM (#11253) Journal

    I have unsigned drivers installed in Win7/64 bit. There's a bit of command line hackery involved, but nothing too terrible.

    Open a command line as admin, and:

              bcdedit -set loadoptions DISABLE_INTEGRITY_CHECKS

              bcdedit -set TESTSIGNING ON

    If you don't want to be bothered with the CLI, there's also a program called EasyBCD that has a tickbox in its 'Advanced' section to disable the driver signature check.

    • (Score: 2) by gallondr00nk on Wednesday March 05 2014, @11:02AM

      by gallondr00nk (392) on Wednesday March 05 2014, @11:02AM (#11260)

      Indeed, I've used the method on other machines. The trouble is I believe it needs a reboot, which is out of the question on the installation DVD.

    • (Score: 2) by VLM on Wednesday March 05 2014, @06:59PM

      by VLM (445) on Wednesday March 05 2014, @06:59PM (#11465)

      I remember when windows admins used to make fun of how unintuitive and complicated linux admin work was, especially the command line access. The times certainly change.