【 Weak current College 】 IP address security protection methods

First, disable the network connection service method

We all know that if you restrict a user to modify the TCP/IP parameters, then these users even if they modify the IP address, you cannot use the new IP address, it will lose its significance of IP theft. To successfully restrict the user free to modify the TCP/IP parameters, the most direct way is to let users unable to open TCP/IP parameter settings window. To do this, you can take to deactivate the system "NetworkConnections" services, TCP/IP parameter settings window will be hidden, so the user cannot enter the Setup window, use the new IP address.

First click the "start" menu's "run" command in the open systems run dialog box, enter the command "services.msc", click "OK" button, open the system service list interface, select one of the "NetworkConnections" Services project, right-click;

From the shortcut menu, click "Properties" command to open the service properties settings interface, click the interface of the "deactivate" button, at the same time, the "Startup type" select "disabled", and then click "OK" button;

At this point you can click the "start" and "settings" and "network and dial-up connection" command, then the window that appears, and you can't find the "Internet connection" or "local connection" icon, you naturally will not enter into TCP/IP parameter settings window to modify the IP address and other parameters, this enables limiting illegal purpose of changing the IP address.
Of course, use the "disable network connection Service Act" to protect IP address, to normal Internet access brings trouble, after all, the network connection service has been disabled, then any network-related access are also terminated. If you want to protect IP addresses at the same time, does not affect the normal operation of the Internet, you may wish to try to follow the same steps as the system of "Plugandplay" service stopped off in this way can the TCP/IP parameters settings window is hidden, but does not affect normal network access.

Second, restrictions on modifying the network parameter method

If you direct to the normal user management permissions to limit the right to open a TCP/IP parameter settings window, then a normal user cannot arbitrarily modify the IP address. For Windows98, to restrict the user from modifying the network parameters, you only have to modify the registry key value of the related network will be able to fulfill the purpose.

Click "start" and "run" command, then the Run dialog box, enter "regedit" command, click the "OK" button, open the system registry editing window, the mouse position in HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Policies\Network branch.

Then on the right side of the interface, click menu bar in the "Edit" and "new" and "Dword value" option, and will create a new DWORD value named "NoNetSetup", then enter its value to "1", then the computer restarts it; you try right-click My Network Places icon and shortcut menu of the "property" command, found the system prompts you to enter the network properties settings window, and so limit the purpose of modifying the IP address is achieved. However, this method is only valid on Windows98 operating system.

III. restrictions on access to the network properties method

This method and the former idea is the same, except that this method is designed for Windows2000 version OS. The following is specific to the method implementation.
First open system run box, and enter "gpedit.msc" string command, click the "OK" button, open system group policy edit window. Then in the edit window, double-click the "user configuration" and "Administrative Templates" and "network" and "network and dial-up connections" icon in the pop-up shown in Figure 3, select the interface in the right side of the "prevent access to LAN connection component properties" option with the mouse double-click it; subsequent settings box appears, select "enabled" option and click "OK" button; you then enter the network connection properties interface, select one of the "Internet Protocol (TCP/IP)" project, you will see the corresponding "Properties" button is grayed out, so the average user will be unable to open TCP/IP parameter settings window, so feel free to modify the IP address.

4. hide local area connection icon method

Normally, modify the computer IP address, you will need to locate systems local area connection icon, and right-click the icon, and then from the pop-up menu in the right part of the implementation of the "property" in order to enter to the TCP/IP parameters settings window. If you would like to approach the local area connection icon is hidden, then regular users also have no way to open a TCP/IP parameter settings window to arbitrarily modify the IP address. To hide the system of the local area connection icon, you can follow the following steps.

Due to the local area connection icon and the system of the Netcfgx.dll, Netshell.dll, Netman.dll three dynamic link files, once these three dynamic link file registered RP, then the local area connection icon is automatically hidden. In the registered top three dynamically linked files, you can first open system run box, and enter the string command "regsvr32NeTcfgx.dll/u "command (where the regsvr32 command, dynamically linking files you want to keep a space), click" OK "button, you can put the Netcfgx.dll registered RP files;

Then in the same way back to register two files; after that, restart the computer and then try to open the network and dial-up Connections window, the local area connection icon is really out of sight.

5. hide my network places method

If the Network Neighborhood icon is hidden, then there is no way to access TCP/IP parameter settings window, so that the local computer's IP address cannot be modified at will. Although hide my network places there are a lot of ways, but this article here to to share a seldom used for system policy method, the method can in Windows98 and Windows2000 system use:

Click "start" and "run" command, then the Run dialog box, enter "poledit" string command, click the "OK" button, open the system policy editor, click the interface "file" menu item "open registry" commands;

In the pop-up screen, double-click the "local user" icon, and then expand the "local" and "shell interface" and "limit" branch, and Figure 4 interface "hide my network places" selected, and click "OK" to return;

Here, in the system policy editor, click the toolbar's "Save" button, and then restart your computer system, this system Desktop Network Neighborhood icon disappears.