McAfee VIRUSSCAN ENTERPRISE Betriebsanweisung Seite 11
- Seite / 166
- Inhaltsverzeichnis
- FEHLERBEHEBUNG
- LESEZEICHEN
Bewertet. / 5. Basierend auf Kundenbewertungen
McAfee Headquarters
McAfee Headquarters, home to McAfee Labs and McAfee Technical Support, provides the
following VirusScan Enterprise services:
• DAT updates — Stored on a McAfee central database server, and using AutoUpdate, these
DAT update files are copied to the VirusScan Enterprise clients or optional DAT repositories
to provide information to fight known threats and new lists of known viruses as they are
found in real time.
• Scan engine updates — Stored on a central database server, scan engine updates are
downloaded as needed to keep the VirusScan Enterprise scan engine up-to-date.
• McAfee Labs — This threat library has detailed information on virus, Trojan, hoax, and
potentially unwanted program (PUP) threats — where they come from, how they infect your
system, and how to handle them. The Artemis feature sends the fingerprint of the suspicious
file to McAfee Labs, where they analyze the file and determine what action to take.
Server
The optional server uses the following components to manage and update many client systems
remotely:
• ePolicy Orchestrator — Centrally manages and enforces VirusScan Enterprise policies,
then uses queries and dashboards to track activity and detections.
NOTE: This document addresses using ePolicy Orchestrator 4.0, 4.5, and 4.6. For information
about ePolicy Orchestrator, see the product documentation for your version.
• DAT repository — Retrieves the DAT updates from the McAfee download site. From there,
DAT files can be replicated throughout your organization, providing access for all other
computers. This minimizes the amount of data transferred across your network by automating
the process of copying updated files to your share sites.
The importance of creating a security strategy
Protecting your client systems from viruses, worms, and Trojan files using VirusScan Enterprise
requires a well-planned strategy: defining threat prevention and detection, response to threats,
and ongoing analysis and tuning.
Prevention — avoiding threats
Define your security needs to ensure that all of your data sources are protected, then develop
an effective strategy to stop intrusions before they gain access to your environment. Configure
these features to prevent intrusions:
• User Interface Security — Set display and password protection to control access to the
VirusScan Enterprise user interface.
• Access Protection — Use access protection rules to protect your computer from undesirable
behavior with respect to files, registry, and ports.
• Buffer Overflow Protection — Prevent abnormal programs or threats from overrunning the
buffer's boundary and overwriting adjacent memory while writing data to a buffer. These
exploited buffer overflows can execute arbitrary code on your computer.
• Unwanted Program Protection— Eliminate potentially unwanted programs such as spyware
and adware from your computer.
Getting Started
The importance of creating a security strategy
11McAfee VirusScan Enterprise 8.8 Product Guide
- Product Guide 1
- Contents 3
- Audience 6
- Conventions 6
- How this guide is organized 7
- Finding product documentation 8
- Getting Started 10
- Using right-click features 14
- What to do first 17
- Quarantined items 18
- Access protection 19
- MyProgram.exe is not malware 20
- VirusScan Console 23
- Rule type descriptions 24
- Protection level descriptions 24
- Types of user-defined rules 25
- Port blocking rule options 31
- Removing user-defined rules 33
- Configuring unwanted programs 38
- DAT files and how they work 43
- Configuring the mirror task 46
- Framework 47
- Excluding scan items 48
- Using scheduled tasks 49
- Scheduling tasks 50
- Configuring the task schedule 50
- Scanning items on-access 51
- Enabling on-network drives 52
- How Artemis works 53
- Configuring general settings 54
- Configuring process settings 58
- Scanning items on-demand 62
- How scan deferral works 64
- How system utilization works 64
- Detections and responses 72
- Buffer overflow detections 73
- Unwanted program detections 73
- On-access scan detections 74
- On-demand scan detections 75
- Email scan detections 75
- Managing quarantined items 77
- Configuring alerts 78
- Access queries and dashboards 80
- Configuring emergency DATs 81
- Downloading a SuperDAT file 82
- Fine-Tuning Your Protection 84
- Running an example query 85
- Analyzing your protection 86
- Appendix 89
- SCAN32.EXE 91
- MCUPDATE.EXE 93
- MCUPDATE 93
- Connecting to remote systems 94
- Troubleshooting 95
- REINSTALLMODE 96
- Property 96
- McAfee VirusScan Enterprise 100
- 8.8, Installation Guide 100
- Frequently asked questions 101
- 00000000.ie 102
- CATALOG.Z 103
- Access Protection tab 104
- Configuring predefined rules 105
- Option definitions 106
- Alerts tab 107
- Reports tab 108
- Blocking tab 109
- Display Options tab 112
- Actions tab 113
- Scan Items tab 117
- General tab 120
- Default = very low 121
- Messages tab 122
- Notes Scanner Settings tab 123
- Exclusions tab 126
- Task tab 134
- Password Options tab 135
- Processes tab 136
- Quarantine Policy tab 140
- Policy tab 141
- Manager tab 142
- Scan Locations tab 144
- Performance tab 146
- DefinitionOption 147
- ScriptScan tab 148
- User-Defined Detection tab 149
- Repositories tab 150
- Proxy settings tab 153
- Mirror task 154
- AutoUpdate task 155
- Schedule tab 156
- Advanced schedule options 160
- Global Scan Settings tab 161
- (continued) 164
© 2020, manymanuals.de. Alle Rechte vorbehalten. | 0.193 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Kommentare zu diesen Handbüchern