Anti-Virus Policy. Computing and Networking Services (CNS).



Similar documents
Now select Properties and click the Folder Size button. This will show the size of all the folders in your mailbox and a grand total.

Guidance for recipients of an encrypted NHSmail

TROUBLESHOOTING GUIDE

Microsoft Outlook: Security Features. and Vulnerabilities

Nielsen Extranet - Troubleshooting Guide March 25, 2015

ANTI-VIRUS POLICY OCIO TABLE OF CONTENTS

NOAA Unified Messaging System Policy

ARIMS Bulk Archive Tool (ARIMS-BAT) User s Guide v 3.7

BARRACUDA. N e t w o r k s SPAM FIREWALL 600

Protecting computers from hidden threats. Implementation Guide. PestPatrol. In a Networked Environment

Using TS-ACCESS for Remote Desktop Access

Information Security Policy. Policy and Procedures

Data Management Policies. Sage ERP Online

Sophos Enterprise Console Help. Product version: 5.1 Document date: June 2012

Internet Security 2015

Latest update 17/12/2015

Outlook Security in the Midst of Malicious Code Attacks

Sophos Enterprise Console policy setup guide. Product version: 5.2

Chapter 1: Installation...5

Sophos Enterprise Console Help

STANDARD ON CONTROLS AGAINST MALICIOUS CODE

Sophos for Microsoft SharePoint Help

Consensus Policy Resource Community. Lab Security Policy

(Self-Study) Identify How to Protect Your Network Against Viruses

Sophos Anti-Virus for NetApp Storage Systems startup guide

PC Security and Maintenance

Net Protector Admin Console

Sophos for Microsoft SharePoint startup guide

System Compatibility. Enhancements. Operating Systems. Hardware Requirements. Security

UQconnect + for Life Basics

ViRobot Desktop 5.5. User s Guide

Sophos for Microsoft SharePoint Help. Product version: 2.0

KofaxExpress. Installation Guide

Maintaining, Updating, and Protecting Windows 7

Step-by-Step Guide to Securing Windows XP Professional with Service Pack 2 in Small and Medium Businesses

Trend Micro OfficeScan Best Practice Guide for Malware

KASPERSKY LAB. Kaspersky Administration Kit version 6.0. Administrator s manual

Out n About! for Outlook Electronic In/Out Status Board. Administrators Guide. Version 3.x

Sophos Anti-Virus for Mac OS X Help

Sophos Anti-Virus for Mac OS X Help

TECHNICAL DOCUMENTATION SPECOPS DEPLOY / APP 4.7 DOCUMENTATION

PATCH MANAGEMENT POLICY PATCH MANAGEMENT POLICY. Page 1 of 5

Sophos Anti-Virus for NetApp Storage Systems user guide. Product version: 3.0

Lectures 9 Advanced Operating Systems Fundamental Security. Computer Systems Administration TE2003

ilaw Installation Procedure

MSD IT High Compliance system Fact sheet

Sophos Anti-Virus for Mac OS X: Home Edition Help

ACTIVE DIRECTORY DEPLOYMENT

Patch Management Hands-On Exercises. Patch Management Hands-on Exercise

Client Manager for Endpoint Protection (CMEP) User s Guide

ViRobot Management System 4.0

CITY OF BOULDER *** POLICIES AND PROCEDURES

SMALL BUSINESS EDITION. Sophos Control Center startup guide

GFI Product Manual. Administration and Configuration Manual

2.2.1 Malware Protection (Inbound)... 14

Using WMI Scripts with BitDefender Client Security

NITB Public & Partner File sharing Websites. User Guide

ensure prompt restart of critical applications and business activities in a timely manner following an emergency or disaster

Antivirus and Malware Prevention Policy and Procedures (Template) Employee Personal Device Use Terms and Conditions (Template)

CBI s Corporate Internet Banking Inquiry Services gives you the ability to view account details and transactions anytime, anywhere.

Application Whitelisting - Extend your Security Arsenal? Mike Baldi Cyber Security Architect Honeywell Process Solutions

Kaspersky Anti-Virus 8.0 for Windows Servers Enterprise Edition Administrator s Guide

Information security guidelines

F-Secure Internet Security 2012

IM&T POLICY & PROCEDURE (IM&TPP 01) Anti-Virus Policy. Notification of Policy Release: Distribution by Communication Managers

Version: 2.0. Effective From: 28/11/2014

Patch Management Table of Contents:

Network and Workstation Acceptable Use Policy

ManageEngine Desktop Central Training

Kaspersky Anti-Virus 8.0 for Windows Servers Enterprise Edition Administrator's Guide

AdminToys Suite. Installation & Setup Guide

ADMINISTRATOR'S GUIDE

User Guide. Version R93. English

Comodo Antivirus for Linux Software Version 1.0

WhatsUp Gold v11 Features Overview

When your users take devices outside the corporate environment, these web security policies and defenses within your network no longer work.

SMS Database System Quick Start. [Version 1.0.3]

Symantec AntiVirus Corporate Edition Patch Update

Symantec Mail Security for Domino

Computer Viruses: How to Avoid Infection

ESET CYBER SECURITY PRO for Mac Quick Start Guide. Click here to download the most recent version of this document

Sophos Anti-Virus for Mac OS X network startup guide. For networked Macs running Mac OS X

STATISTICA VERSION 9 STATISTICA ENTERPRISE INSTALLATION INSTRUCTIONS FOR USE WITH TERMINAL SERVER

Transcription:

Anti-Virus Policy Reference: CNS-P-I-ANTIVIRUS Revision: A Supersedes: Purpose: Source: None CNS is to provide a computing network that is virus-free. The purpose of this policy is to provide instructions on measures that must be taken by AUB employees to help achieve effective virus detection and prevention. Computing and Networking Services (CNS). Approved by: Nabil Bukhalid, Director of CNS on: August 28, 2007 Peter Heath, Provost on: Pending Applicability: Background: Scope: This policy applies to all computer users. A virus is a piece of potentially malicious programming code that will cause some unexpected or undesirable event to computer software, data and/or the network. Viruses can be transmitted via e- mail or instant messaging attachments, downloadable Internet files, USB disks, and CDs. Viruses are usually disguised as something else, and so their presence is not always obvious to the computer user. A virus infection can be very costly to AUB in terms of lost data, lost staff productivity, and/or lost reputation. This policy applies to all computers that are connected to the AUBnet network via a standard network connection, wireless connection, modem connection, or virtual private network connection. This includes both AUB owned computers and personally-owned computers attached to the AUBnet network. The definition of computers includes desktop workstations, laptop computers, handheld computing devices, and servers All employees are subject to this policy and required to abide by it. Policy: 1. Currently, AUB standard anti-virus for Windows OS clients and servers is based on McAfee anti-virus solution (http://www.mcafee.com/). McAfee agents are licensed with every newly purchased Windows OS system. Licensed copies of McAfee anti-virus can be purchased separately online via AUB iprocurement. CNS-P-I-ANTIVIRUS-A.doc 1/6 Printed on: 23/05/2008

2. All computers attached to the AUBnet network must run standard and supported anti-virus software. This anti-virus software must be active all the time and must be configured to perform on-access real-time checks on all executed files and scheduled virus checks at preset regular intervals. The virus definition files must be kept up to date all the time 3. Any activity intended to create and/or distribute malicious programs onto the AUBnet network (e.g. viruses, worms, Trojan horses, e-mail bombs, etc.) is strictly prohibited. 4. If an employee receives what he/she believes to be a virus, or suspects that a computer is infected with a virus, he/she must report such incident to the CNS immediately by e-mailing cns.helpdesk@aub.edu.lb. Report the following information (if known): virus name, extent of infection, source of virus, and potential recipients of infected material. 5. No employee should attempt to destroy or remove a virus, or any evidence of that virus, without direction from CNS. 6. Any virus-infected computer will be removed from the network until it is verified as virus-free. Guidelines: Best Practices for Virus Prevention: 1. Always run the standard anti-virus software provided by AUB. 2. Never open files or macros attached to an e-mail from an unknown, suspicious, or untrustworthy source. 3. Never open files or macros attached to an e-mail from a known source (even a coworker) if you were not expecting a specific attachment from that source. 4. Be suspicious of e-mail messages containing links to unknown Web sites. It is possible that the link is a malicious executable (.exe) file disguised as a link. Do not click on a link sent to you if you were not expecting a specific link. 5. AUB mail system scans all attachments for virus infections and blocks any trapped virus from being transmitted to client systems. McAfee anti-virus-shield on the client machine scans all email attachments for virus infections. Also, and by default AUBede e-mail client, Microsoft Outlook, blocks attachments with critical file extensions (see Appendix-A for details). AUBnet users should not alter the default email client configuration to override the security setup and send/receive banned extensions. A workaround to send/receive such businesscritical files is to compress the file using a file compression utility. CNS-P-I-ANTIVIRUS-A.doc 2/6 Printed on: 23/05/2008

6. Never copy, download, or install files from unknown, suspicious, or untrustworthy sources or removable media. 7. Avoid direct disk sharing with read/write access. Always scan any removable media for viruses before using it. 8. If instructed to delete e-mail messages believed to contain a virus, be sure to also delete the message from your Deleted Items or Trash folder. 9. Back up critical data and systems configurations on a regular basis and store backups in a safe place. 10. Regularly update virus protection on personally-owned home computers that are used for business purposes. This includes installing recommended security patches for the operating system and other applications that are in use. The following activities are the responsibility of Computing & Networking Services: 1. CNS is responsible for maintaining and updating this Anti-Virus Policy. Copies of this policy will be posted on AUB web site. Check one of these locations regularly for updated information. 2. CNS will keep the anti-virus products it provides up-to-date in terms of both virus definitions and software version in use. AUBede McAfee EPO server is scheduled to check the McAfee update site every one hour for updates and to auto update both the virus definition file and the software version. AUBede McAfee client configuration is set to check the EPO on a daily basis for updates and to auto update and report success and failures. CNS will invest adequate efforts to identify AUBede clients who did not attempt to update their virus definitions file for more than 3 months and will take appropriate remedial actions. 3. CNS will apply any updates to the services it provides that are required to defend against threats from viruses. 4. CNS will install anti-virus software on all AUB owned and installed desktop workstations, laptops, and servers. 5. CNS will assist employees in installing anti-virus software according to standards on personally-owned computers that will be used for business purposes. CNS will not provide anti-virus software in these cases. 6. CNS will take appropriate action to contain, remove, and assist in recovery from virus infections. In order to do so, CNS may be required to disconnect a suspect computer from the network or disconnect an entire segment of the network. CNS-P-I-ANTIVIRUS-A.doc 3/6 Printed on: 23/05/2008

7. CNS will perform regular anti-virus sweeps on all AUBede managed and active computers every first Tuesday of the month. 8. CNS will check the EPO logs on a daily basis for detected viruses that are not quarantines by McAfee anti-virus software and take appropriate remedial actions. 9. CNS will attempt to notify users of AUBnet systems of any credible virus threats via e-mail and AUB online bulletin. Virus reports will not be acted upon until validated. Employees should not forward these or any virus warning messages in order to keep network traffic to a minimum. The following activities are the responsibility of AUB departments and employees: 1. Departments must ensure that all departmentally-managed computers have virus protection that is in keeping with the standards set out in this policy. 2. Departments that allow employees to use personally-owned computers for business purposes must implement virus protection processes and procedures that are in keeping with the standards set out in this policy. 3. Departments who don t employ staff with enough technical knowhow to ensure compliance with this policy should seek the assistance of CNS to do so. 4. Departments compliance with this policy shall be subject to audit. 5. All employees are responsible for taking reasonable measures to protect against virus infection. 6. Employees must not attempt to either alter or disable anti-virus software installed on any computer attached to the AUBnet network without the express consent of CNS and for a strictly limited period not to exceed in any case one working day. Enforcement: Any employee who is found to have violated this policy may be subject to disciplinary action, up to and including termination of employment. CNS-P-I-ANTIVIRUS-A.doc 4/6 Printed on: 23/05/2008

Appendix-A Attachments file types blocked by default by AUB official email client (Outlook). File extension ade adp app asp bas bat cer chm cmd com cpl crt csh exe fxp gadget hlp hta inf ins isp its js jse ksh lnk mad maf mag mam maq mar mas mat mav maw mda mdb mde mdt File type Access Project Extension (Microsoft) Access Project (Microsoft) Executable Application Active Server Page BASIC Source Code Batch Processing Internet Security Certificate File Compiled HTML Help DOS CP/M Command File, Command File for Windows NT Command Windows Control Panel Extension (Microsoft) Certificate File csh Script Executable File FoxPro Compiled Source (Microsoft) Windows Vista gadget Windows Help File Hypertext Application Information or Setup File IIS Internet Communications Settings (Microsoft) IIS Internet Service Provider Settings (Microsoft) Internet Document Set, Internet Translation JavaScript Source Code JScript Encoded Script File UNIX Shell Script Windows Shortcut File Access Module Shortcut (Microsoft) Access (Microsoft) Access Diagram Shortcut (Microsoft) Access Macro Shortcut (Microsoft) Access Query Shortcut (Microsoft) Access Report Shortcut (Microsoft) Access Stored Procedures (Microsoft) Access Table Shortcut (Microsoft) Access View Shortcut (Microsoft) Access Data Access Page (Microsoft) Access Add-in (Microsoft), MDA Access 2 Workgroup (Microsoft) Access Application (Microsoft), MDB Access Database (Microsoft) Access MDE Database File (Microsoft) Access Add-in Data (Microsoft) CNS-P-I-ANTIVIRUS-A.doc 5/6 Printed on: 23/05/2008

File extension mdw mdz msc msi msp mst ops pcd pif prf prg pst reg scf scr sct shb shs tmp url vb vbe vbs vsmacros vss vst vsw ws wsc wsf wsh File type Access Workgroup Information (Microsoft) Access Wizard Template (Microsoft) Microsoft Management Console Snap-in Control File (Microsoft) Windows Installer File (Microsoft) Windows Installer Patch Windows SDK Setup Transform Script Office Profile Settings File Visual Test (Microsoft) Windows Program Information File (Microsoft) Windows System File Program File MS Exchange Address Book File, Outlook Personal Folder File (Microsoft) Registration Information/Key for W95/98, Registry Data File Windows Explorer Command Windows Screen Saver Windows Script Component, Foxpro Screen (Microsoft) Windows Shortcut into a Document Shell Scrap Object File Temporary File/Folder Internet Location VBScript File or Any VisualBasic Source VBScript Encoded Script File VBScript Script File, Visual Basic for Applications Script Visual Studio.NET Binary-based Macro Project (Microsoft) Visio Stencil (Microsoft) Visio Template (Microsoft) Visio Workspace File (Microsoft) Windows Script File Windows Script Component Windows Script File Windows Script Host Settings File CNS-P-I-ANTIVIRUS-A.doc 6/6 Printed on: 23/05/2008

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information