Preventing System Intrusions
Conficker is malicious software that infects and control computer operation system within no time by replicating itself within the files. The software was invented by Chinese hackers. “Upon loading in the overhaul space, the malicious software is attempting to download any file from the Internet - distinctively, additionally malware commencing transfer converter, business as well as data files from maxmind.com. The worm proceeds by setting up a Hyper Text Transfer Protocol server that listens on a random port on the victim’s system while hosting a copy of the worm. It then scans for new susceptible victims to exploit, at which point the new prey will download the worm from the previous victim and so on,” Hinchliffe said. Platforms which are supported are vulnerable, for example windows 2000 and windows xp or windows vista among others.
In system management security, it is necessary to perform patch testing to escape the risk of being attacked by malicious stuffs. Once the system has failed, identifying only one patch which caused system failure is a very cumbersome operation. It is done to ensure that patches are verified as they are being applied as well as that they do not encompass undesirable effects on the system. Patch testing ensures that they conform to the system upon application and they do not course system failure. Consequently the process allows for the detection of scanner attentive anomaly as quickly as possible. Additionally a fix to be looked into before the scanner hits complete production environment. Through scanning Microsoft baseline security analyzer is able to detect any omitted patch. It shows if there is missing or weak password, the fire wall is operational.
Refferences
Ashley M., (2005), “VISA PCI Best Practices For All Organizations,” Sarbanes-Oxley
Compliance Journal
Microsoft, 2003, “Hot To: Implement Patch Management”
NIST Special Publication 800-40 Version 2 (2005), “Creating a Patch and Vulnerability
Management Program”
PatchManagement.Org: Patch Management Discussion Listserv
Posey M, (2005). “Step-by-Step Guide: Patch management must-do list” Full Document Here
SearchWindowsSecurity.Com: Checklist: Measuring patch management metrics
SearchWindowsSecurity.Com: Patch Management Best Practices WhitePaper
Software Update Services Deployment white paper at
http://technet.microsoft.com/en-us/wsus/bb466200.aspx