ALL >> Business >> View Article
Determining What To Audit And Analyzing Audit Records
In this practice, you will create a list of audit requirements for a fictitious company, and then analyze common MCSE 2003 exams(http://www.mcsa-70-291.com) records found in the security log. Complete the exercises that follow. If you are unable to answer a question, review the lesson materials and try the question again. You can find answers to the questions in the "Questions and Answers" section at the end of the chapter.
Exercise 1: Determining What to Audit
Read the following scenario and then answer the question that follows.
Scenario You are an IT auditor at Wingtip Toys. You are asked to specify the audit requirements for a file server in the research department. The file server will store confidential research information. Files are protected by EPS encryption. Communications between researchers' workstations and the file server are protected by IPSec. Only the researchers and their workstations are allowed to access the file server.
Figure 9-23 shows the configuration for auditing for use of the Take MCSE study guides free download(http://www.examshots.com/certification/MCSE-2003-50.html) Ownership ...
... permission. To ensure that the administrator is caught, you should also audit for privilege use. Two possible events can be recorded. If the administrator attempts access while logged on interactively to the server on which the file resides, the Se_TakeownershipPrivilege, event 578, is recorded. This is a privilege usage event. However, if she takes ownership remotely, the file Take Ownership permission (WRITE_OWNER) is used. This is object access event 560. With all this noted, remember that administrators can also delete audit logs, either in their entirety or by individual events. If you have untrustworthy administrators, the only solution is to not allow them to be administrators.
Also To prevent an administrator from reading a file, you can encrypt the file. However, if you do so, make sure the administrator is not the file recovery agent. To learn why and what you can do to prevent administrators from reading sensitive files, see Lesson 5, "Designing a File Encryption and Decryption Strategy" CCNA exam(http://www.upcert.com) later in the chapter.
Add Comment
Business Articles
1. Lucintel Forecasts The Glass Fiber In The Global Marine Market To Grow With A Cagr Of 3.7% From 2024 To 2030Author: Lucintel LLC
2. Lucintel Forecasts The Glass Fiber In The Global E&e Market To Grow With A Cagr Of 3.9% From 2024 To 2030
Author: Lucintel LLC
3. Lucintel Forecasts The Global Frp Pole In Telecommunication Market To Grow With A Cagr Of 6.5% From 2024 To 2030
Author: Lucintel LLC
4. Lucintel Forecasts The Global Frp Pole In Power Transmission & Distribution Market To Grow With A Cagr Of 6% From 2024 To 2030
Author: Lucintel LLC
5. Lucintel Forecasts The Global Frp Pipe In Oil And Gas Market To Grow With A Cagr Of 5.1% From 2024 To 2030
Author: Lucintel LLC
6. Lucintel Forecasts The Global Frp Pipe In Chemical Market To Grow With A Cagr Of 3.6% From 2024 To 2030
Author: Lucintel LLC
7. Adopt A Modern Telecom Commission Management System To Fix Revenue Leakages
Author: Kevin
8. Quality Steel Pipes And Tubes With Commitment And Trusted Service
Author: CONTENT EDITOR FOR SAMPHIRE IT SOLUTIONS PVT LTD
9. Lucintel Forecasts The Global Foam Core For The Construction Market To Grow With A Cagr Of 3.7% From 2024 To 2030
Author: Lucintel LLC
10. How Important Is Mutual Fund?
Author: Sagar Shah
11. What Do You Need To Know About Customize Your Own Clothes
Author: Guangzhou Beianji Clothing
12. Detailed Tips To Choose Quality Cabinets And Joinery Melbourne
Author: William Harvey
13. Lucintel Forecasts The Global Foam Core For The Transportation Market To Grow With A Cagr Of 5.4% From 2024 To 2030
Author: Lucintel LLC
14. Silicone Sealing Foam Cord: The Valuable Option For You
Author: Dongguan Senma New Materials Technology Co., Ltd
15. How Investment Banking Companies And Credit Solutions Elevate Wealth Management
Author: Drishti Desai