home
***
CD-ROM
|
disk
|
FTP
|
other
***
search
/
The World of Computer Software
/
The World of Computer Software.iso
/
pbaseiv.zip
/
P4MSC006.TIP
< prev
next >
Wrap
Text File
|
1991-12-16
|
3KB
|
88 lines
As a LAN administrator, I need to make sure my Novell
NetWare network remains secure. To do so, I run AUDITLAN.BAT
[see listing below] every weekend to perform these security
checks:
Check for short or easy-to-guess passwords by running the
Novell SECURITY program
List EXE or COM files that have appeared in public
directories in the last week, so I can keep an eye on new,
unauthorized programs that may be viruses or Trojan horses
Run the CHKDIR program on all directories with space
restrictions, to make sure no one is running out of room
Check the integrity of the hard disk volume with the
CHKVOL utility
Send a complete report to the network printer
To use AUDITLAN.BAT, call the batch file from the DOS prompt
using the current date (e.g. 9-1-91) as a parameter. You
must have supervisor privileges on the LAN for this batch
file to run properly.
Rick R. Monnin
Arlington Heights, Illinois
Editor's note: Every LAN administrator should run a batch
file like this one at least once a week, although you will
want to change directory and print queue names to match your
system. You can copy the listing below to a file by pressing
Alt-F, then modify it to work with your system. If your
version of NetWare doesn't come with the SECURITY.EXE
program, remove line 10 from the batch file.
Scanning for COM and EXE files with dates more recent than
last week may not be sufficient to flush out viruses or
Trojan horse programs; a "smart" virus or a human
infiltrator can defeat this test by resetting the file's
date. I recommend that you add a commercial virus scanner,
such as McAfee's Netscan, to the weekly audit.
AUDITLAN.BAT
---- BEGIN LISTING ----
@ECHO OFF
MAP I:=SYS:
CAPTURE q=LASER1
CLS
ECHO Working, please wait....
I:
CD \SYSTEM
ECHO System Security Check Report > PRN
SYSTIME > PRN
SECURITY > PRN
CD ..
ENDCAP
SYSTIME > PRN
CAPTURE q=LASER1
ECHO Search for new .EXE and .COM files on SYS: > PRN
SYSTIME > PRN
NDIR ALL *.EXE CREATE AFT %1 > PRN
NDIR ALL *.COM CREATE AFT %1 > PRN
ENDCAP
CAPTURE q=LASER1
SYSTIME > PRN
ECHO SYS: Restricted Directory Size Report > PRN
I:
CD \DEPT91
CHKDIR > PRN
CD \DEPT94
CHKDIR > PRN
REM ** Repeat for other directories of interest
CD \
ENDCAP
CAPTURE q=LASER1
SYSTIME > PRN
CHKVOL * > PRN
ENDCAP
---- END LISTING ----
Title: NetWare Security Audit
Category: MSC
Issue date: Sep 1991
Editor: Brett Glass
Supplementary files: NONE