π Windows Server Security: Pro Tips (1) π
1. Custom Sysroot Folder for OS Installation
Instead of installing the Windows OS in the default folders like C:\Windows or C:\Winnt, I recommend installing it in a custom folder like C:\SYSROOTXXXX (where XXXX is a unique identifier such as your asset number). This strategy helps protect against malware that typically targets default locations. Additionally, after installation, create dummy folders like C:\Windows and C:\Winnt to further mislead malicious programs.
2. Drive Partitioning (logical volume) for Optimized Performance, Ensure your hard drive is partitioned as follows:
C: for the OS
D: for the swap file (demand paging), make a note that the old school rule to allocate 2x RAM size for swap file will not be applicable for modern servers with high capacity RAM's such as 256GB RAM. In those cases, you can limit your swap file to 32GB or 64GB. However if you are using desktop servers with lower RAM size such as 16GB, the 2xRAM size will be applicable.
E: for applications
This partitioning boosts system performance, improves availability, and allows for easier management of resources.
Disclaimer: The information provided in this article is for knowledge-sharing purposes only. Please exercise caution and consider real-time scenarios before applying.