Microsoft Windows XP Home Edition - Zenk - Security - Repository

More documents

Recommendations

Info

Microsoft Windows XP Home Edition Security Implementation Version 1.4b Option 1 If you do receive an alert, you need to investigate it every time. The alerts may provide you with the name of the virus. What you can do is go to the companies web site and get more information on the virus. It may tell you ways to clean up the virus and how to protect yourself for the future. If the alert suggests a heuristic scan, this means that the file doesn't match any virus in the signature file. This may be a perfectly acceptable file but you need to investigate to ensure that it is not corrupt or hiding any information. If you are still unsure on the warning you can contact the vender and send them the file so that they can investigate it themselves. Key Repairing fingerprint an infected = AF19 FA27 system 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46 If you feel that your system has been infected you need to perform some tasks to repair it. The first thing you need to do is to positively identify the infection. You do not want to restore a system or waste needless hours to find out that you really were not infected to begin with. If you have identified that you are infected, you need to isolate the infected computer. This means if you are connected to the Internet or a network than you pull the plug on the network or modem. Once you have done that you need to get the proper tools or utilities to clean your system. Some companies provide cleanup tools on their web site to assist you in your recovery process. A good collection of tools can be obtained for the Symantec Corporation 31 web site located at http://www.sarc.com/avcenter/tools.list.html. If there are no tools are available, then you will need to delete all the infected files and replace them with your backup copies. In extreme cases of infection you will need to reformat the disk, re-install your Operating System, restore all the applications, restore all your data from clean backups, re-install your antivirus software, and scan other computers on your network. As you can see it is extremely important to protect yourself from the beginning so that you are not forced to perform an extreme recovery case. VIII. Backup and Recovery As shown in previous sections backups are extremely important even in a home environment. Most users do not think to backup their data. They either feel that they won't crash or be infected, or that it is for corporations and companies only. This section will provide you with backup methods, media types, and some utilities. © SANS Institute 2003, Author retains full rights Key fingerprint = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46 31 Symantec Corporation, http://www.symantec.com Page 30 of 53 © SANS Institute 2003, As part of the Information Security Reading Room. Author retains full rights.
Backup Method Microsoft Windows XP Home Edition Security Implementation Version 1.4b Option 1 There are two different backup categories that can be used. Normal Backups are full backups of all selected files. When a Full Backup occurs the files archive attribute will be cleared. The file archive attribute notifies the backup utility if a file has been created or changed since the last backup. This will prevent other backup types from backing up data that has not changed since the last backup. The next category for backups is Interim Backups. This category is used in between your Normal (Full) backups. There is different Interim Backup types. You need to choose which type best suites your situation. The first type is Incremental. This type of back will copy files that have changed or been Key created fingerprint since the = AF19 last FA27 normal 2F94 or incremental 998D FDB5 DE3D backup. F8B5 It will 06E4 clear A169 the 4E46 archive attribute once the file has been backed up. The next type is Differential. This option will copy the files that have been changed or been created since the last normal or incremental backup as well. The difference between incremental and differential is that differential does not clear the archive attribute. The next type of back up is Copy. This will copy the files that you select. This does not remove the archive attribute from the file. This type of backup can be used a way to archive a particular file without changing your backup routine. The last type of backup is a Daily Backup. This backup method will copy all the files that changed or were created on the current day. This does not remove the archive attribute. This can be used to backup a particular day's work without changing your backup routine. This method is not recommended though. The problem with this method is that any files that are changed after a backup is run are missed and won't be picked up on the next daily run. For example, if you run your daily backup at 10:00 and you change a file at 11:00 P.M. This file will not be backed up. The next run at 10:00 P.M the next day will only backup from 12:00 A.M. to 10:00 P.M. that day. Another problem with this backup method is that if you miss a day for any reason your files will not be backed up for that day. Media Types Once you have determined a backup method, you need to decide on the media type to use for storage. There are many options that can be used. There are good points and bad points for each method. Floppy Disk © SANS Institute 2003, Author retains full rights As a backup method this is not a good type to use. Most floppy disks hold around 1.44 MB of memory. If you performed a full backup you would need several hundred disks in order to fit your whole system on them. Key fingerprint = AF19 FA27 2F94 998D FDB5 DE3D F8B5 06E4 A169 4E46 Page 31 of 53 © SANS Institute 2003, As part of the Information Security Reading Room. Author retains full rights.
Page 1 and 2: Key fingerprint = AF19 FA27 2F94 99
Page 3 and 4: Microsoft Windows XP Home Edition S
Page 7 and 8: Disable / Delete Accounts Microsoft
Page 9 and 10: Secure the Administrator Account Mi
Page 13 and 14: IV. File Systems File System Micros
Page 17 and 18: SANS Institute 9 Microsoft Windows
Page 19 and 20: Internet Connection Firewall (ICF)
Page 23 and 24: Third Party Personal Firewalls Micr
Page 25 and 26: VII. Antivirus / Virus Protection M
Page 27 and 28: Information Sources Microsoft Windo
Page 29: Protecting your computer Microsoft
Page 33 and 34: Interim Backups with Windows Backup
Page 37 and 38: Adding a site to a zone Microsoft W
Page 39 and 40: Download Settings Microsoft Windows
Page 41 and 42: Scripting Security Settings Microso
Page 53: Microsoft Windows XP Home Edition S

Microsoft Windows XP Home Edition - Zenk - Security - Repository

Create successful ePaper yourself

Delete template?

Save as template?