IT Baseline Protection Manual - The Information Warfare Site
19.12.2012 Views
Share Embed Flag

IT Baseline Protection Manual - The Information Warfare Site

IT Baseline Protection Manual - The Information Warfare Site

IT Baseline Protection Manual - The Information Warfare Site

SHOW MORE
SHOW LESS
ePAPER READ
DOWNLOAD ePAPER
iwar.org.uk

Create successful ePaper yourself

Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.

START NOW

Safeguard Catalogue - Hardware & Software Remarks<br />

____________________________________________________________________ .........................................<br />

S 4.58 Sharing of directories under Windows 95<br />

Initiation responsibility: Head of <strong>IT</strong> Section, <strong>IT</strong> Security Management<br />

Implementation responsibility: Administrators<br />

For every computer running under Windows 95, a decision is required as to<br />

whether individual peer-to-peer functions should be enabled or disabled. For<br />

this purpose, file and printer functions can be enabled or disabled on an<br />

individual basis via the system guidelines under the menu item Control panel /<br />

Network / File and Printer Sharing. After that, user access to this option must<br />

be revoked.<br />

If the file sharing is inactive, then the corresponding File Manager / Explorer<br />

functions are not available, although it is still possible to establish links with<br />

directories on other computers.<br />

When configuring a Windows-for-Workgroups computer, the administrator<br />

also needs to consider the following points:<br />

- By means of the system guidelines under Windows 95, unauthorised<br />

persons must be prevented from changing user names and computer names.<br />

- <strong>The</strong> default setting "Save password in list " is to be deactivated on the<br />

appropriate menu.<br />

- Computer and user names are to be assigned in accordance with<br />

organisational specifications. By means of the system guidelines,<br />

unauthorised persons must be prevented from changing user names and<br />

computer names.<br />

- During the use of Schedule+, the right granted by default to view open and<br />

assigned time blocks must be deactivated for all unauthorised WfW users.<br />

Otherwise every user at the same post office will be able to view individual<br />

appointments in the time schedule.<br />

If a post office is configured for use by several persons for the purpose of<br />

communications or joint appointment scheduling, a corresponding data<br />

backup should be performed at appropriate time intervals. This is required to<br />

prevent inadvertent or intentional deletion of the post office, which is not<br />

protected automatically under WfW.<br />

Under Windows 95, it is possible to configure a remote administrative<br />

function which allows administrators to access individual workstations via the<br />

network. Before this option is activated, a check must be made as to whether it<br />

conflicts with the safety objectives of the organisation.<br />

Activation of the remote administration function gives rise to the following<br />

threats:<br />

- It is possible for unauthorised persons to try out IDs and passwords for this<br />

function<br />

- an administrator can secretly access users’ computers at any time.<br />

If this feature for facilitating workstation management is required, a decision<br />

must be made as to whether administrators should use the same password for<br />

____________________________________________________________________ .........................................<br />

<strong>IT</strong>-<strong>Baseline</strong> <strong>Protection</strong> <strong>Manual</strong>: Oktober 2000

logo

products

Resources

Company

Terms of service
Privacy policy
Cookie policy
Cookie settings
Imprint
Change language
Made with love in Switzerland
© 2024 Yumpu.com all rights reserved

Hooray! Your file is uploaded and ready to be published.

Saved successfully!

Ooh no, something went wrong!