|
|
Virus Prevention Checklist
Recovering from a virus can
be time-consuming, costly and dangerous. To help you avoid such
problems in the first place, we've assembled a
checklist that includes options to consider when
developing your virus prevention plans.
Security settings
-
Schedule regular backups of your data
files.
-
Protect all of your servers with
antivirus software.
-
Install antivirus software on all
workstations.
-
Enable the virus-detection option in CMOS.
-
Consider setting the attributes for
critical system files (such as sys.ini, win.ini,
autoexec.bat, and config.sys) to read-only to
prevent them from being written to.
-
Consider setting permissions to the
registry and other system files to prevent
unauthorized changes.
-
Enable the virus expiration warnings to
alert you when signatures are outdated.
-
Set the server to scan both incoming and
outgoing files.
-
Include all file types when scanning,
such as exe, dll, and zip files.
-
If productivity will not be compromised,
consider disabling the A drive of high-risk
workstations from within a password-protected
CMOS. If this is not feasible, disable the
option of booting from the A drive.
-
Set user response options to the minimal
acceptable level, such as “Cure” or
“Quarantine.” Do not give the user the option to
“Cancel” the repair.
-
Enable all macro virus protection within
software packages, such as Word and Excel.
-
Edit the file-exclusion list so all exe
and dll files are included during scanning.
-
Create and maintain a write-protected
emergency boot disk and know how to use it.
Signature updates
-
Schedule regular updates of virus
signature files.
-
Centrally distribute the update to the
workstations.
-
Avoid using data and program disks
received from unknown sources.
-
Enact a policy that enforces the scanning
of all diskettes before they are used in a
workstation.
-
Write-protect all data and program
diskettes.
Scanning
-
Schedule full workstation scans on a
regular basis with minimal intrusion to the
user, such as during lunch or after hours.
-
Disable user intervention of scans.
-
Enable background monitoring on the
workstations.
E-mail
-
Scan all incoming and outgoing e-mail and
attachments.
-
Discourage downloading of attachments.
-
Do not allow users to forward jokes or
chain letter e-mail.
-
Call or e-mail the individual who sent
the infected e-mail or document. They may not
know they have a virus.
User policies
-
Educate all users about
university polices.
-
Require that only the IT department
perform all software installations.
-
Do not allow your users to download or
install shareware, such as games and
screensavers.
-
Create a rule that users should not bring
diskettes from home, unless they are willing to
allow the diskettes to be scanned by the IT
department prior to being used.
-
Institute a set of applications that
users have available to do their job. Do not
allow any software to be installed beyond those
provided with their system.
-
Do not allow remote-access users to
upload files to the network unless the IT
department can verify the integrity of the PC
being used for remote access.
Educate your users
-
Publish links to reliable virus
encyclopedias, such as Symantec’s site at
http://www.sarc.com,
www.security.noc.ucf.edu
-
Instruct your users to check these sites
when they suspect they have a virus or when they
want additional information. Users can also
check for hoax virus information.
-
Encourage users to install an antivirus
software package on their home computers.
-
Encourage users to report
when they find a virus on their system so you
can track which viruses surfaced in your
network.
-
Inform your users of new virus threats.
This will heighten their sense of awareness.
-
Educate users on the proper use of macro
virus protection. Instruct them to disable all
macros when prompted unless the document has
been given a clean bill of health and is known
to be virus-free.
Virus detection utilities
|
