Lab #4
Operating Systems: Hardening and Security
March 1st, 2015
Lab Assessment Questions & Answers
1. What is the one thing that a virus, a worm, spyware, and malicious code have in common? What are the differences among these three threats: a virus, a worm, and spyware?
A virus, worm and spyware all have in common that they replicate themselves into the network’s system. Some of the differences between the three are that worms can edit files, viruses need a host file to propagate itself and a spyware can steal very sensitive information within the network. 2. How often should you update your antivirus protection?
You should update your antivirus protection daily to always keep your network secured. 3. Why is it a best practice to have and to carry an antivirus boot-up disk or CD?
It is best practice to use an antivirus boot-up or CD because it can bypass any files that are meant to protect the malware from being detected during scans.
4. In a corporate environment, should new antivirus definitions be installed as soon as they are available?
Yes, in a corporate environment antivirus programs should be installed right away to protect the company’s files.
5. Is the manual quick scan good enough protection for a system?
No a manual quick scan is not good enough protection for a system the files also have to be deleted.
6. What best practices for the workstation domain that can mitigate the risks and threats caused by malicious code?
Some good practices that can help mitigate risks are to perform checks, perform audits in your network, and making sure that the virus protection is covering all areas. 7. If you have an up-to-date antivirus program, do you still need a malware detection program like Windows Defender?
Yes even if you have an up to date antivirus program you still need a malware detection program because