Is it possible to strip the Windows kernel? I have a Windows 2003 Enterprise server, and I asked someone about securing it. He said something along the lines of stripping the kernel, however I somehow dont think windows kernels are strippable. I looked for info on google but found none, and when I told this person i didnt think it was possible i was treated like I didn't know what I was talking about. Anyone have any info?
Yeah, hit it with an axe ;-) That ought to cut 'er down a bit.
I do beleve it's possible to unload drivers and subsystems that you're not taking advantage of. You can't /etc/system||make config||kernconf it, but you can cut out some of the stuff if I remember right.
Killing services, et al.. but that's not dropping kernel pieces.
The core is one main file, but individual drivers and subsystems can be loaded and unloaded, much like on a Linux machine or on a Macintosh. I'm not sure it's all that worth it, though.
The design of the Windows kernel is actually pretty cool. It, like the Mach (Macintosh), is a micro-kernel. Most of the Unixes run monolithic systems whereas the micro-kernel systems rely on a "message passing style" framework.