A scanner is an IDS that performs a periodic assessment of risks on your system. An IDS looks for vulnerabilities that might open up your system to threats. Intrusion detection scanners look for potential problems with your system that might result from the following:

What actions are necessary for undertaking, if also you appeared among injured from breaking:

1. To rescue the necessary information (not established programs) from disks on other machine and to rearrange ALL system from the distribution kit. It is possible and with damp but only in the event that you are sure that you damp has been made BEFORE breaking. " All necessary information " are understood as options of everything that works, users / groups, catalogues of users with contents, etc. At rescue of this information it is necessary to pay attention to some user files - ~/.rhosts, ~/bin/* - it is especially close(attentive), and also on possible(probable) traces of work of programs which try to select passwords, strange broad gullies IRC, etc. It is recommended to check up also file system on presence of the left tool means - scripts, source codes of programs. If the program of interception of a network is found out in you ( sniffer) be not too lazy and check up all file system in searches of the report of work of this program. If searches will crown success - closely analyze a find, probably it will affect you will use what reports and means of protection further. Besides the big request - to keep this file and to send its technical experts of your provider (the critical information for you can remove).

Codes Java and ActiveX are carried out locally, by machines of end users, endangering these machines of an attack. The it is more important to know, how similar attacks can be prevented.

So, any user of browser Web - whether it is Netscape Navigator or Internet Explorer from corporation Microsoft - becomes the private soldier of growing army of users Java. Thus is unimportant even, that such user can not be able to program at all and does not apply for a rank of the software developer knowing algorithmic languages up and down and capable blindly to find a mistake in code C or C ++. It is necessary to the person to start one of the most popular browsers - and it already user Java, it is pleasant to it whether or not.

At the previous stages of development of computer facilities at creation of the document the computer was used as "the big typewriter", and the perceived image on the screen was to adequately electronic document. Therefore the analogy between traditional (the text on a paper) and electronic technology of display of the document, between traditional and electronic interaction, was justified. But already now, especially in the long term, adequacy of electronic document and its visual reflection more likely exception, than a rule: submitted on the screen or the printed out document cardinally differs from initial electronic though it is generated by a computer on his basis.

1. General provisions and definitions

The present supervising document establishes the order of development, introduction and operation of the automated systems (AS) that is meeting the requirements of information security ( IS) .

In the appendix the methodical recommendations concerning realization of stated positions are resulted.

In the document the following basic questions are considered:

* A stage of development of the project the AS on which planning Internet security maintenance is made;

* Maintenance IS during introduction and operation.

This part explains some concepts and terminology that some technical elements of a policy were understandable even for the user for the reader. The general (common) principle of a network security in the Company is the interdiction of all kinds of access and all actions which are not allowed by obviously given policy. In other words, if there is no special sanction to carrying out of concrete actions or use of concrete network resources such actions or such use are forbidden, and the person, their carrying out are subject to the punishments described later in this policy.

Requirements to the IDS

It is necessary to note, that the IDS can be applied as to the authorized users of system using it is incorrect (i.e. breaking its policy of safety), and to external in relation to system to users

The IDS should carry out following basic functions: