Beruflich Dokumente
Kultur Dokumente
si
sasampl
eoft
hef
i
nalpr
oduct
t
hesepagesar
ef
oryourr
evi
ew onl
y
and ar
epr
ot
ect
ed byJanco
scopyr
i
ght
PAGES HAVEBEEN EXCLUDED
Internet &
PC WorkStation
Policies &
Procedures
HandiGuide
All Rights reserved. No part of this book may be reproduced by any means without
the prior written permission of the publisher. No reproduction or derivation of this
book shall be re-sold or given away without royalties being paid to the authors. All
other publishers rights under the copyright laws will be strictly enforced.
Published by:
Publisher cannot in any way guarantee the procedures and approaches presented in
this book are being used for the purposes intended and therefore assumes no
responsibility for their proper and correct use.
Printed in the United States of America
ISBN 13 978-1-881218-00-5
HandiGuide is a registered trademark of M. Victor Janulaitis.
Thi
si
sasampl
eoft
hef
i
nalpr
oduct
t
hesepagesar
ef
oryourr
evi
ew onl
y
and ar
epr
ot
ect
ed byJanco
scopyr
i
ght
PAGES HAVEBEEN EXCLUDED
Thi
si
sasampl
eoft
hef
i
nalpr
oduct
t
hesepagesar
ef
oryourr
evi
ew onl
y
and ar
epr
ot
ect
ed byJanco
scopyr
i
ght
PAGES HAVEBEEN EXCLUDED
License Conditions
This product is NOT FOR RESALE or REDISTRIBUTION in any physical or electronic format. The purchaser of this template has
acquired the rights to use it for a SINGLE Disaster Recovery Plan unless the user has purchased a multi-use license. Anyone who
makes an unlicensed copy of or uses the template or any derivative of it is in violation of United States and International copyright
laws and subject to fines that are treble damages as determined by the courts. A REWARD of up to 1/3 of those fines will be paid to
anyone reporting such a violation upon the successful prosecution of such violators.
The purchaser agrees that derivative of this template will contain the following words within the first five pages of that document.
The words are:
2001 - 2007 Copyright Janco Associates, Inc. ALL RIGHTS RESERVED
Both of these documents are the same but we have provided them in both
for your use. If you have any questions on these documents please send an email to
http://www.e-janco.com/register.asp
If you register your product within thirty (30) days of purchase Janco will send you a coupon for 10% off on your
next purchase from any of Janco's direct sites. These include:
http://www.e-janco.com
http://www.itproductivity.org
http://www.ejobdescription.com
http://www.it-toolkits.com
iii
Thi
si
sasampl
eoft
hef
i
nalpr
oduct
t
hesepagesar
ef
oryourr
evi
ew onl
y
and ar
epr
ot
ect
ed byJanco
scopyr
i
ght
PAGES HAVEBEEN EXCLUDED
TABLE OF CONTENTS
RESPONSIBILITIES.............................................................. 23
Manager, IT Support Resource Group ................................................................. 24
Manager, Enterprise Operational Group .............................................................. 24
Steering Committee................................................................................................. 25
Manager Internet and PC Control and Security ................................................... 25
All Enterprise Managers (Enterprise Groups, Departments and Divisions) .... 26
Asset Owners ........................................................................................................... 26
PC Support Managers ........................................................................................ 28
Users ..................................................................................................................... 28
Help Desk ............................................................................................................. 28
Outside Information Technology Services ........................................................... 29
Applicability .......................................................................................................... 30
Responsibilities When Using Information Technology Services .................. 30
Outside Information Technology Services - Basic Policies ........................... 31
Thi
si
sasampl
eoft
hef
i
nalpr
oduct
t
hesepagesar
ef
oryourr
evi
ew onl
y
and ar
epr
ot
ect
ed byJanco
scopyr
i
ght
PAGES HAVEBEEN EXCLUDED
TRAINING........................................................................... 67
Hardware Training ................................................................................................... 67
Operating System Training .................................................................................... 68
Application Software Training ................................................................................ 68
Sources of Training ................................................................................................. 69
Supplier Training ................................................................................................. 69
Local Experts ....................................................................................................... 69
Third Party Training Organizations ................................................................... 69
User Support Center ........................................................................................... 70
Special Training ................................................................................................... 70
Enterprise Staff ........................................................................................................ 70
Contractor Personnel .............................................................................................. 71
Thi
si
sasampl
eoft
hef
i
nalpr
oduct
t
hesepagesar
ef
oryourr
evi
ew onl
y
and ar
epr
ot
ect
ed byJanco
scopyr
i
ght
PAGES HAVEBEEN EXCLUDED
TABLE OF CONTENTS
Features .................................................................................................................... 73
Physical Components ............................................................................................. 74
Workstations ........................................................................................................ 75
Network Cables ................................................................................................... 75
Network Adapters .................................................................................................... 75
File Servers .......................................................................................................... 75
Network Peripherals ............................................................................................ 76
Network Operating System ................................................................................ 76
Configuration ............................................................................................................ 76
Users ......................................................................................................................... 76
Network Supervisors ........................................................................................... 77
Regular Network Users ...................................................................................... 77
Network Operators .............................................................................................. 77
Security ..................................................................................................................... 77
Directory Rights ................................................................................................... 78
Back up ..................................................................................................................... 80
iii
Thi
si
sasampl
eoft
hef
i
nalpr
oduct
t
hesepagesar
ef
oryourr
evi
ew onl
y
and ar
epr
ot
ect
ed byJanco
scopyr
i
ght
PAGES HAVEBEEN EXCLUDED
INTERNET ........................................................................103
Internet Characteristics ......................................................................................... 104
Electronic Mail (e-mail) ..................................................................................... 105
File Transfer Protocol (FTP) ............................................................................ 105
Gopher ................................................................................................................ 105
Home Page ........................................................................................................ 105
TCP/IP Network Protocol ................................................................................. 106
Telenet ................................................................................................................ 106
USENET Newsgroups ...................................................................................... 106
Internet - World Wide Web (WWW) ............................................................... 106
Security Concerns ................................................................................................. 107
Firewalls ............................................................................................................. 108
Screening Router .............................................................................................. 108
Dual-Homed Gateway ...................................................................................... 109
Screening Router and Bastion Host ............................................................... 110
Encryption .......................................................................................................... 110
Policy and Procedures .......................................................................................... 111
Pitfalls ...................................................................................................................... 111
Service Installation ............................................................................................ 112
Hardware ................................................................................................................ 112
Software .................................................................................................................. 113
SECURITY ........................................................................143
iv
Thi
si
sasampl
eoft
hef
i
nalpr
oduct
t
hesepagesar
ef
oryourr
evi
ew onl
y
and ar
epr
ot
ect
ed byJanco
scopyr
i
ght
PAGES HAVEBEEN EXCLUDED
TABLE OF CONTENTS
PASSWORDS ...................................................................177
Identification ....................................................................................................... 177
Authentication .................................................................................................... 177
Standards for Passwords ................................................................................. 178
Authorization Verification ................................................................................. 178
APPENDIX ........................................................................181
HARDWARE/SOFTWARE SUPPORTED FORMS .....................183
Supported Software ............................................................................................... 183
Supported PCs - Standalone ............................................................................... 183
Supported PCs - Networked ................................................................................ 185
Supported Add-In Boards ..................................................................................... 186
Unsupported Hardware ......................................................................................... 187
Unsupported Software .......................................................................................... 188
Thi
si
sasampl
eoft
hef
i
nalpr
oduct
t
hesepagesar
ef
oryourr
evi
ew onl
y
and ar
epr
ot
ect
ed byJanco
scopyr
i
ght
PAGES HAVEBEEN EXCLUDED
vi
Thi
si
sasampl
eoft
hef
i
nalpr
oduct
t
hesepagesar
ef
oryourr
evi
ew onl
y
and ar
epr
ot
ect
ed byJanco
scopyr
i
ght
PAGES HAVEBEEN EXCLUDED
MANAGEMENT OVERVIEW
13
Thi
si
sasampl
eoft
hef
i
nalpr
oduct
t
hesepagesar
ef
oryourr
evi
ew onl
y
and ar
epr
ot
ect
ed byJanco
scopyr
i
ght
PAGES HAVEBEEN EXCLUDED
Given these assumptions we have tried to achieve several very specific objectives
in this HandiGuide. The first and foremost is to provide a tool with which readers
can create their own operational management manual for individual PC sites or
applications, as well as a manual that covers all of Information Technology in the
5
entire enterprise . With that as a primary objective, the other objectives are:
Provide a uniform set of rules and guidelines for dealing with all
known and recognized aspects of the technology operations
affecting the enterprise and its operations.
4 Information Systems, Information Technology, and Communications Metrics HandiGuide and Metrics HandiGuide for the Internet and Information
Technology published by Janco Associates both provide a base level definition of necessary metrics.
5 Readers of this book can submit a letter on their company letterhead to request the inclusion in part or in entirety of sections of this HandiGuide in
company manuals. The primary requirements are the inclusion of Janco Associates, Inc.s copyright and the use of the final document is for internal use
only (i.e. not for resale).
6 For the purposes of this document, sensitive information includes, but is not restricted to, that information which must be safeguarded so enterprise
assets are not misused or abused in any fashion.
14
ADMINISTRATIVE MANAGEMENT
MANAGEMENT OVERVIEW
7
Thi
si
sasampl
eoft
hef
i
nalpr
oduct
t
hesepagesar
ef
oryourr
evi
ew onl
y
and ar
epr
ot
ect
ed byJanco
scopyr
i
ght
PAGES HAVEBEEN EXCLUDED
This is the information that is learned by and known to members of an enterprise that is normal and necessary to conduct business within the enterprise
on a day-to-day basis.
8
A template for a Disaster Recovery Plan in Word or HTML format can be obtained from the site www.e-janco.com.
15