Windows XP Host Assessment Checklist
March 9, 2010· Are Physical Security measures in place?
· Is the BIOS password protected?
· Does the computer Boot from a CD?
· Is AutoRun for the CD-ROM enabled?
· Is it possible to run Programs from the CD?
· Are Operating System Restrictions in place?
· Is NTFS enabled on all partitions?
· Is File Sharing enabled?
· Are there Passwords on all of the user accounts?
· Are Administrator Group Members limited?
· Is there a Guest Account?
· Does the computer have a Firewall?
· Is a Router or Internet Connection Sharing (ICS) enabled?
· Is AntiVirus Software present?
· Are Hotfixes and Service Packs up to date?
· Are Automatic Updates enabled?
· Is the screensaver password protected?
· Are Wireless services present?
· Is there Wireless Network Security?
· Is there Backup Tape Security?
· Is Password Security enforced?
· Are Software Restriction Policies enforced?
· Are Accounts Limited?
· Is the Administrator Account Name default?
· Is there a Dummy Administrator Account?
· Is the “Everyone” Group permitted on file shares
· Is the last logged-in user name displayed?
· Is Remote Desktop enabled?
· Are any unnecessary services enabled?
· Is the Encrypting File System (EFS) enabled?
· Are Offline Folders is used?
· Is the local cache encrypted?
· Is the Temp Folder encrypted?
· Does the page file clear at shutdown?
· Is Auditing enabled? If so, to what degree?
· Are default shares enabled?
· Is Dump File Creation enabled?
· Is IPSec implemented?