🛡️ Local Policies Playbook
Windows (Desktop & Server)
Section titled “Windows (Desktop & Server)”- Objective: Configure system-wide security settings, including user rights, audit policies, and network security options.
- Tools:
secpol.msc(Local Security Policy)
- Common Actions:
- Navigate to Local Policies -> Security Options.
- Enable: “Do not allow anonymous enumeration of SAM accounts”.
- Enable: “Limit local use of blank passwords to console only”.
- Review other settings for network security and privilege elevation.
- Navigate to Local Policies -> User Rights Assignment to review which groups can perform sensitive actions (e.g., “Allow log on through Remote Desktop Services”).
- Navigate to Local Policies -> Audit Policy to ensure logging for logon events, policy changes, etc.
Linux (Mint 21 & Ubuntu 22)
Section titled “Linux (Mint 21 & Ubuntu 22)”- Objective: Configure system-wide security settings, user rights, and auditing.
- Tools:
Terminal
- Common Actions:
- Configure
sudo: Edit the sudoers file usingsudo visudoto control which users and groups have administrative privileges. - Configure Auditing: Install and configure
auditdto log system events. - System Permissions: Secure system-wide configurations in
/etc/. For example, check permissions on/etc/shadowand/etc/passwd.
- Configure