This post is a bit late and should have been posted a month ago, but I got behind and then other things got in the way. Sorry.
During the September PLUG Hackfest Presentation meeting, I volunteered to bring in a Windows 7 laptop to be the Flag during the October 2nd open lab hacking session (Capture the Flag).
I took one of my spare laptops and configured Windows 7 Ultimate 64-bit Edition with the following configuration:
When I connected to the Wireless network at Gangplank on Saturday, I configured the network as a Public network and proceeded to surf the Internet (actually, my son did this part of the “work” for me). The folks in attendance used their Linux based hacking tools to attempt to hack into my Windows 7 machine. After about an hour, I changed the settings for Remote Desktop to allow any connections. After 3 1/2 hours, no one was able to successfully hack into my Windows 7 machine. At the very end, we explored the “social engineering” aspect of hacking and Lisa (group leader) created a PDF document that had hidden code embedded into the document and saved it to a thumb drive. I attempted to open the PDF using Foxit Reader and was notified by Foxit Reader that the document was attempting to execute code and was blocked.
Windows 7, by default is locked down and secure. If we follow common sense and leave the security settings in place, we should be secure.