CompTIA Network+ Certification Exam Tutorial: Antivirus Programs

November 2, 2006

Knowing all about antivirus programs is important for passing the Network+ Exam as well as succeeding with real-world networks.

In the first part of this CompTIA Network+ certification exam tutorial, we looked at the different types of viruses and other invaders trying to get into our network, and how antivirus programs help to stop them. Today, we’ll discuss some tips on how to get the maximum protection from your antivirus program.

I strongly recommend you choose an antivirus program that offers automatic updates. If you rely on manual updates – that is, relying on remembering to go out and check for updates yourself instead of having them automatically downloaded when new updates are available – I can practically guarantee you’re going to forget to do so, and this can be a fatal mistake for both your network and your career.

Why is this so important? The #1 mistake network administrators and home PC owners alike make with antivirus software is not keeping the program up-to-date. New viruses are being created every minute of every day, and reputable antivirus program vendors such as Symantec are monitoring that situation, looking for new viruses and writing virus signature updates or virus definitions regularly. (A virus signature is the actual binary pattern of a virus, and just as your signature identifies you, a virus signature identifies the virus.) It’s not enough for the vendors to create these updates – they’ve got to be downloaded to your computers and servers.

Most vendors offer some kind of automatic download for virus definitions, so when new updates are created, they’re automatically downloaded by the antivirus program. For example, Symantec offers LiveUpdate, which will download new virus definitions to their popular Norton Antivirus program when new ones are available. Another popular antivirus program, Kaspersky Antivirus, will download several new virus updates several times a day! Identifying viruses and writing new definitions to defend against them is a never-ending battle, so make sure you have the latest protection.

These updates do cost money, but it’s money well-spent. Most antivirus vendors give you 30 or 60 days of free updates, but after that you must purchase a subscription to the service.

Regardless of which antivirus program you choose, I urge you to use automatic updates if they’re available. As busy as we get, it’s easy to forget these important updates, and they’re too important to be forgotten.

The only viruses you’re totally unprotected against are the unknown ones, and the only way for your network hosts and servers to know about new viruses is to keep them updated!

Don’t be lulled into a false sense of security by seeing that your servers all have the latest updates. Every single workstation and server in your network must have an antivirus program with the latest updates running. I know that neither you or I have the time to walk around to every workstation every day checking on this, so I recommend you check two separate PCs on your network each day. That only takes a few minutes, and if you see one PC with outdated definitions, there’s a good chance that other PCs on the network have the same problem. Believe me, that’s one problem you want to fix now.

When you configure antivirus software, you’ll have the option of setting a time when a virus scan should run on the host, as well as what files should be scanned for viruses. If your network PCs are left on at night, setting the antivirus program to run a full scan at 1 AM is a great idea.

If a host or server has too many files to scan them all at once, you may have to pick which files should be scanned. First on your list should be any file whose extension is .com, .exe, .ocx, or .dll. These are all executable files, which are primary carriers and targets of viruses. I personally like to scan a host’s Microsoft Word documents as well, since those files are passed from user to user more often than any other file type.

Additionally, most network administrators have been in a position where they’ve had to turn the antivirus program off, and you may have installed programs on your own PC where the installation program recommends you to turn the antivirus program off.

If you’re downloading software from a vendor you’re not familiar with, realize that when you comply with their request to turn the antivirus off, you’re trusting them with the health of your network. Maybe they’re asking you to turn it off in order to correctly install the software, and maybe they’re asking you to turn it off to make it easier for the download to launch a virus.

Legitimate vendors often have you turn antivirus protection off during a software install. I personally scan any disk or downloaded file before I begin the install process, and I recommend you do so as well. And if you do turn the antivirus off … make sure to turn it back on. I once saw an entire network go down because a virus managed to launch on an email server that had become infected one day earlier – and the infection occurred when the admin turned the antivirus off to install a program on the server and then forgot to turn it back on. The next morning, that server was toast. Don’t let that happen to you or your servers.

Click here for MCSE Test.

70-270 Braindumps: Question 3

January 10, 2006

You are the administrator of a Windows XP Professional computer. The computer is a member of a Windows 2000 domain. The domain contains a enterprise certification authority (CA). You use the computer to connect to the Internet.

Six months ago, you paid for online computer support services from a support company. The support companys Web site is at https://www.ins.com. Now you attempt to connect to the Web site again to use the support service. Before the Web page is displayed, you receive a dialog box. The message in the dialog box asks you to select a certificate to use when you connect. However the list of certificates that is shown in the dialog box is empty. You cannot select a certificate and you cannot connect to the companys. Web page.

In Internet Explorer, you open the Internet Options dialog box and click Certificates. Several personal certificates appear in the Advanced Purposes list. You want to be able to connect to the support companys Web site at https://www.ins.com. What should you do?

A. Configure Internet Explorer to enable the Use TLS 1.0 option.
B. Add the server certificate for http://www.ins.com to the Trusted Publishers list.
C. Contact the support company to obtain a certificate and add the certificate to the list of personal certificates.
D. Request a user certificate from the enterprise CA.
E. Change the security settings of the Internet zone to enable the Anonymous logon option.

70-270 Braindumps: Question 2

January 9, 2006

You are the desktop administrator for your company. The company’s network contains 500 Windows XP Professional computers.

The information security department releases new security requirements. The new requirements state that the Telnet service may not be started on any company-owned client computer.

You need to create a new security template that prevents the Telnet service from starting on companyowned client computers. You open the Security Configuration and Analysis console on your Windows XP Professional computer. Which portion of the console do you need to configure?

To answer, click the appropriate container in the Security Configuration and Analysis console.

To view the simulation item, download a free 70-270 demo from EasyCert or purchase the 70–270 Study Gide at ExamBlasters.com.

70-270 Braindumps: Question 1

January 9, 2006

You are the desktop administrator for your company. The company has an Active Directory domain that includes 15 Microsoft Windows NT Workstation 4.0 computers and 20 new Windows XP Professional computers.

Domain users of Windows NT Workstation 4.0 computers can run an older application, developed by your company, on their computer. However, domain users of Windows XP Professional computers cannot run the same legacy application on their computers. You need to enable all users of Windows XP Professional computers to run this application. Your solution must not give the users administrative control of their computers.

You create an organizational unit (OU) named Pro and a Group Policy object (GPO) named ServerLegacy. How should you reconfigure the Windows XP Professional computers?

A. Add the domain user accounts to the Pro OU. Import the Basicwk.inf security template to the ServerLegacy GPO.
B. Add the domain user accounts to the Pro OU. Import the Compatws.inf security template to the ServerLegacy GPO.
C. Add the computer accounts to the Pro OU. Import the Basicwk.inf security template to the ServerLegacy GPO.
D. Add the computer accounts to the Pro OU. Import the Compatws.inf security template to the ServerLegacy GPO.

*Please comment this question and tell us what is the correct answer!