It is currently Thu Mar 28, 2024 9:45 am

All times are UTC - 7 hours [ DST ]

Recent News:



Post new topic Reply to topic  [ 4 posts ] 
Author Message
PostPosted: Sun Apr 23, 2017 2:19 pm 
Offline
Newbie
Newbie

Joined: Sun Apr 23, 2017 12:37 pm
Posts: 3
Thanks: 0
Thanked: 0 time in 0 post
I have an HP EX470, running the WHS version based on Windows 2003 SP2. With the device no longer supported by Microsoft or HP, and other features no longer usable by modern day clients (or devices I own) I have taken some liberties of disabling services and closing their port in windows firewall in hopes to minimize the security foot print, and maximize the resources available for the network shares/disk extender functions of the device. I would like to open the conversation to the community, to improve and fine tune the list. Here is a dump of how the services are currently configured and running.

Code:
Name   Status     Startup Type
Application Layer Gateway Service   Started   Manual
COM+ Event System   Started   Automatic
Computer Browser   Started   Automatic
Console QuickView Monitor Service   Started   Automatic
Cryptographic Services   Started   Automatic
DCOM Server Process Launcher   Started   Automatic
DHCP Client   Started   Automatic
Distributed Link Tracking Client   Started   Automatic
Distributed Transaction Coordinator   Started   Automatic
DNS Client   Started   Automatic
Drive Extender Migrator Service   Started   Manual
Event Log   Started   Automatic
HP MediaSmart Server Disk Monitor   Started   Automatic
HP MediaSmart Server Health Monitor   Started   Automatic
HP MediaSmart Server Web   Started   Automatic
HTTP SSL   Started   Manual
IIS Admin Service   Started   Automatic
IPSEC Services   Started   Automatic
License Logging   Started   Automatic
Logical Disk Manager   Started   Automatic
Logical Disk Manager Administrative Service   Started   Manual
Microsoft Software Shadow Copy Provider   Started   Manual
Network Connections   Started   Manual
Network Location Awareness (NLA)   Started   Manual
Plug and Play   Started   Automatic
PostgreSQL Database Server 8.2   Started   Automatic
Protected Storage   Started   Automatic
Remote Access Connection Manager   Started   Manual
Remote Procedure Call (RPC)   Started   Automatic
SBCore Service   Started   Automatic
Secondary Logon   Started   Automatic
Security Accounts Manager   Started   Automatic
Server   Started   Automatic
Shell Hardware Detection   Started   Automatic
SSDP Discovery Service   Started   Manual
System Event Notification   Started   Automatic
Task Scheduler   Started   Automatic
TCP/IP NetBIOS Helper   Started   Automatic
Telephony   Started   Manual
Terminal Services   Started   Manual
Universal Plug and Play Device Host   Started   Automatic
Virtual Disk Service   Started   Manual
Volume Shadow Copy   Started   Manual
Windows Firewall/Internet Connection Sharing (ICS)   Started   Automatic
Windows Home Server Archiver   Started   Automatic
Windows Home Server Drive Letter Service   Started   Automatic
Windows Home Server Storage Manager   Started   Automatic
Windows Home Server Transport Service   Started   Automatic
Windows Management Instrumentation   Started   Automatic
Windows Media Connect Service   Started   Automatic
Windows Search   Started   Automatic
Windows Time   Started   Automatic
Workstation   Started   Automatic
.NET Runtime Optimization Service v2.0.50727_X86      Manual
Alerter      Disabled
Application Experience Lookup Service      Manual
Application Management      Manual
ASP.NET State Service      Manual
Automatic Updates      Disabled
Background Intelligent Transfer Service      Manual
Bonjour Service      Manual
ClipBook      Disabled
COM+ System Application      Manual
Distributed File System      Manual
Distributed Link Tracking Server      Disabled
Error Reporting Service      Disabled
File Replication      Manual
Firefly Media Server      Manual
Help and Support      Disabled
HP MediaSmart Server Network Monitor      Disabled
Human Interface Device Access      Disabled
IMAPI CD-Burning COM Service      Disabled
Indexing Service      Disabled
Intersite Messaging      Disabled
Kerberos Key Distribution Center      Disabled
Messenger      Disabled
Net Logon      Manual
Net.Tcp Port Sharing Service      Disabled
NetMeeting Remote Desktop Sharing      Disabled
Network DDE      Disabled
Network DDE DSDM      Disabled
Network Provisioning Service      Manual
NT LM Security Support Provider      Manual
Performance Logs and Alerts      Automatic
Portable Media Serial Number Service      Manual
Print Spooler      Manual
Remote Access Auto Connection Manager      Manual
Remote Desktop Help Session Manager      Manual
Remote Procedure Call (RPC) Locator      Manual
Remote Registry      Disabled
Removable Storage      Manual
Resultant Set of Policy Provider      Manual
Routing and Remote Access      Disabled
Smart Card      Manual
Special Administration Console Helper      Manual
Telnet      Disabled
Terminal Services Session Directory      Disabled
Themes      Disabled
Uninterruptible Power Supply      Manual
WebClient      Disabled
Windows Audio      Disabled
Windows CardSpace      Manual
Windows Home Server Computer Backup      Disabled
Windows Home Server Port Forwarding      Disabled
Windows Image Acquisition (WIA)      Disabled
Windows Installer      Manual
Windows Live Custom Domains Service      Disabled
Windows Management Instrumentation Driver Extensions      Manual
Windows Presentation Foundation Font Cache 3.0.0.0      Manual
Windows User Mode Driver Framework      Manual
WinHTTP Web Proxy Auto-Discovery Service      Manual
Wireless Configuration      Disabled
WMI Performance Adapter      Manual
World Wide Web Publishing Service      Manual


Top
 Profile  
Thanks  

Attention Guest: Remove this ad by Registering with the MediaSmartServer.net Forums. It's Free!
PostPosted: Sat May 27, 2017 8:05 am 
Offline
Max Contributor
Max Contributor
User avatar

Joined: Sat Apr 12, 2008 12:49 pm
Posts: 2226
Location: Casper Wyoming
Thanks: 81
Thanked: 256 times in 251 posts
This person may or may not come back to see this, but, thought I would throw in my 2 cents worth.
I am a huge believer in shutting down services that will "Never" be needed (on a system that is NOT headless)
Of course shutting down wireless is a safe bet.

But, I can tell you this, I ended up performing a server recovery because of shutting down to many services, not sure which one did it, but at the time I did not have the Video adapter.

I have since left the services alone and installed the CPU/Ram upgrades and called it a day. These upgrades not only make the server run cooler they also take care of what a few extra services might be using.
And god knows microsoft, ya never know when one of them might be needed.

Hope this helps and Good luck to all.

_________________
[X510 CPU/RAM/All 2 TB Red's] [X510 CPU/Sync'ed Backup/All 2 TB Hitachi's]
[X510 /2 in box]
[X710 LIAN LI DIY W2016E] Stablebit Drivepool [EX-503 LIAN LI 5-bay USB3 External]
:twisted: Fear the Cloud :twisted:


Top
 Profile  
Thanks  
PostPosted: Sat Jun 17, 2017 9:55 pm 
Offline
Newbie
Newbie

Joined: Sun Apr 23, 2017 12:37 pm
Posts: 3
Thanks: 0
Thanked: 0 time in 0 post
Part of the problem with leaving unused services running is the vulnerabilities they may contain, since the system is old and no longer patched.


Top
 Profile  
Thanks  
PostPosted: Tue Aug 08, 2017 3:28 pm 
Offline
Max Contributor
Max Contributor
User avatar

Joined: Sat Apr 12, 2008 12:49 pm
Posts: 2226
Location: Casper Wyoming
Thanks: 81
Thanked: 256 times in 251 posts
Win server 2003 hasn't been out of service for that long, but I do understand your concern. I posed the question in another thread, if anybody had used the MS patch for the wannacry ransomware stuff and if it had caused any problems.

I did not get any takers. I have a spare system out in the garage I was going to try the patch and see if it went ok, just haven't had the time.

Is your server open to the outside, I turned remote access off long ago as the speeds were not worth it.
But even with remote access off, I guess a client could infect the server. Some of these new crypto's are nasty :twisted:
Goodluck
I will shout back if I get time to try that latest patch.
Plus I have the vga adapter now to see what is happening (just in case) :-)

_________________
[X510 CPU/RAM/All 2 TB Red's] [X510 CPU/Sync'ed Backup/All 2 TB Hitachi's]
[X510 /2 in box]
[X710 LIAN LI DIY W2016E] Stablebit Drivepool [EX-503 LIAN LI 5-bay USB3 External]
:twisted: Fear the Cloud :twisted:


Top
 Profile  
Thanks  
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 4 posts ] 

All times are UTC - 7 hours [ DST ]


Who is online

Users browsing this forum: No registered users and 9 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB® Forum Software © phpBB Group