Ten Preventive Measures of Computer Network Virus
1. Use diskless workstations as much as possible, do not use or use workstations with floppy drives. Workstation is the portal of the network, as long as this level is well controlled, it can effectively prevent virus intrusion.
2. Use a dedicated file server to divide the hard disk into a "NetWare" partition, and start the file server with a floppy disk. Although this method starts slowly, it enhances the security of the system.
3. Less use "Supervisor" to log in, establish user groups or functional users, and decentralize some of their permissions appropriately. This gives the group administrator certain rights and responsibilities, which not only simplifies network management, but also ensures the security of the network system.
4. Run the "SECURITY" utility provided by NetWare to find the weakest link in the network system, check and plug potential vulnerabilities. "SECURITY" can find many problems in the network, such as unsecured passwords, unspecified user passwords, the same authority as the administrator, access privileges in the root directory of any volume, and the authority in the standard directory exceeds the scope And other issues.
5. Set the file attributes correctly and reasonably regulate the user's access rights. NetWare provides two security measures for directory and file access rights and attributes, which can effectively prevent virus intrusion. The specific measures are as follows: Generally, multiple users are not allowed to have "Read" and "Write" rights to the same directory. Other users' private directories have the rights of "Read" and "Scan". · Set the permissions of all users to PUBLIC, LOGIN and other directories as "Read" and "Scan". Set the file attributes of the extensions .EXE and .COM to "Read Only" and "Execute Only". This setting can also give the file attributes "Delete Inhibit" and "Rename Inhibit" to the file. · The group directory can only contain data files, and the general users can only "Read" and "Scan". · Under special circumstances, authorize a user to have “Access Control†and “Supervisory†rights in a certain directory.
6. For non-shared software, back up its execution files and overwritten files such as * .COM, * .EXE, * .OVL, etc. to the file server, and regularly copy from the server to the local hard disk for rewriting operation.
7. When receiving remote file input, you must not write the file directly to the local hard disk, but write the remote input file to a floppy disk, then check it for viruses, and then copy it to the local hard disk after confirming that it is non-toxic.
8. Adopt workstation anti-virus chip. During the DOS boot process of the workstation, when "ROM BIOS" and "Extended BIOS" have been loaded and "ParTITIon Table" has not been loaded, the anti-virus chip is given control, which prevents boot Type virus.
9. Use excellent network anti-virus software, such as LANProtect and LANClear for NetWare. 10. Establish a sound network system security management system, strictly operate rules and regulations, and regularly conduct file backup and virus detection.
Guangzhou Yunge Tianhong Electronic Technology Co., Ltd , https://www.e-cigaretteyfactory.com