2.3.8.1 OS Hardening

OS Hardening:
1. The act of configuring an OS securely, updating it, creating rules and policies to help govern the system in a secure manner, and removing unnecessary applications and services, in order to minimize OS exposure to threats and to mitigate possible risk.
Seven steps are involved in keeping a well-maintained computer:
1. Use a surge protector or (better) uninterruptible power supply (UPS)
2. Update the BIOS or UEFI
3. Update the OS
4. Update anti-virus and anti-malware software
5. Update the firewall
6. Maintain the disks
7. Create an image of the system
Summarize the process of hardening an Operating System:
1. Remove unnecessary applications and services
2. Whitelist or blacklist applications
3. Use anti-malware, anti spyware, and anti-spam applications
4. Configure host-based firewalls
5. Perform updates and patches
6. Use group policies, security templates, benchmarks and baselines
7. Utilize a secure file system
8. Perform preventive maintenance on hard drives