Security Solutions
3-125
Designing Access Controls
Finalize Security Policies
Table 3-98. Macro Security Tests
5. Does your organization prohibit peer-to-peer (P2P) applications such as
file-sharing or instant messaging applications?
When you activate the P2P test, it prohibits all P2P applications. But you
can then choose specific ones to allow in your network. List the excep-
tions for this test in Table 3-101.
6. Do your users run Microsoft Virtual Machine (MVM)? If so, do you require
hotfixes?
7. Do your users run Windows Media Player? If so, do you require hotfixes?
8. Do your users run Mac QuickTime? If so, do you require hotfixes?
9. Do you test the compliance of your Microsoft Internet Information Ser-
vices (IIS) server?
Table 3-99. Other Tests for Hotfixes
10. Does your policy specify a particular setting for Windows automatic
updates?
If so, you should enable this test and choose one of the options displayed
in Table 3-100.
If you are afraid that users might choose not to download and install
updates, you might require the “automatically download and install”
option. On the other hand, if you have your own process for distributing
updates, you might want to turn off automatic updates.
Microsoft Excel Microsoft Outlook Microsoft Word
Security
setting
High
Low
Medium High
Low
Medium High
Low
Medium
MVM Windows Media
Player
Mac QuickTime IIS
Hotfixes
required?