This
page was designed to help you find answers to the most commonly asked questions about
Cytlok. If you have a question that this section doesn't address, try checking the
Cytlok Tips & Tricks and Cytlok
Questions & Answers pages.
Help with CYTLOK for Windows 95 is available
for the following topics:MENUS
CONFIGURATION TABS
When CYTLOK opens, you will see four pull-down menus across the top of the window:
File, Tools, View and Help.
File
-
Add Application
– add an application for CYTLOK protection.
-
Remove Application
– remove applications from CYTLOK protection.
-
Exit
– completely quit CYTLOK.
Tools
-
Change Master Password
– change your password.
-
Advanced File Listing
– encrypt or critical backup files.
-
Find Files or Folders
– locate files or folders on your hard drive, network drives or floppy drives.
View
-
Refresh
– refreshes open CYTLOK screen to view updates.
Help
-
Help
– enables the CYTLOK help files.
-
About CYTLOK
– displays which version of CYTLOK is running.
The configuration tabs displayed under the pull-down menus
across the top of the CYTLOK window take you to each of the following configuration areas:
-
Application
-
File Access
-
Network Access
-
Logs
The Application tab brings up the above display that lists the applications (programs),
their full paths and the following defined permissions:
-
Network access
-
Execute permission
-
Password protection
Here you can easily add or remove applications with the following functions:
-
Add Application
– add an application to allow or disallow network access and permission to launch.
-
Remove Application
– remove an application from CYTLOK protection.
Add Application
Clicking on the Add Application button opens the following window to browse for the
application you wish to define. Select the file and click on the Open button.
Next, the Set Application Network Access Permission window opens, with the option to
Allow access with or without password protection.
Clicking on the Next button opens the Set Application Execution Permission window where
you may allow or deny the execution of a program, with or without password protection.
Click on the Finish button to complete the task.
Remove Application
To remove a file from your list of defined applications, simply highlight the file
you wish to remove and click on the Remove Application button. (The action merely
removes the file from your list, not from your system.
The File Access tab brings up the above display. This window is the default screen when
CYTLOK is opened and is your primary screen for setting permissions on your system. Unless
you are setting up the computer environment for other users, this will probably be the
screen you access most often.
Permissions Overview
In the File Access window, the permissions for all
files and folders are indicated by a "check" or "x" for read, write,
execute and visible. The "check" allows permission; the "x" denies
permission.
To allow or deny permissions for files or folders, you may:
- Click on the corresponding "check" or "x" beneath the permission to
toggle between the two, or
- Right-click on the file or folder you wish to change to activate a pop-up menu to select
from.
The pop-up window includes the aforementioned permissions as well as Advanced settings.
Advanced settings allow you to Encrypt and back up files defined as Critical.
Follow this procedure for all files or folders until all have been assigned
permissions.
File/Folder Permissions and
Functions
All files on your computer are located in folders. The settings you select for a
folder will apply to its entire contents, unless you individually set permissions for a
specific file within that folder.
READ permission is the ability to open and read the content of a file.
WRITE permission is the ability to open and write to the content of a file,
except it also carries responsibility for the CREATE and DELETE functions. All of these
functions cause a WRITE action to the selected file.
EXECUTE permission for a folder is the only function that differs from the file
permissions. EXECUTE serves as a default for the execution permission on files. For
example, if a file in a folder has not been given any specific execution permission, then
it will receive that permission from the EXECUTE permission of its parent folder. If
permission has been granted to the folder, then EXECUTE is assumed for the file.
VISIBLE function literally hides any file from view, on an application- or
program-specific basis, except from CYTLOK. For example, a folder can be hidden from
Netscape, but can be viewed by Quicken. This is truly hidden in your file system from
anyone but you.
Advanced File Listings Functions
ENCRYPT/DECRYPT function, when set, will encrypt the selected file. To decrypt that
same file, simply remove this permission. NOTE: a file is not in a usable state
when it is encrypted. To use the file, you must decrypt it first.
CRITICAL function, when set, automatically creates a backup or duplicate of a
file in a folder before that file can be opened for modification. BE CAREFUL HERE!
Use the CRITICAL function only for critical files like your WIN.INI or SYSTEM.INI files.
Creating duplicates of files can be time consuming and will use disk space.
Network Access allows you to configure the connectivity rights for Internet
applications as well as connectivity rights for the workstation itself.
The Network Access window is divided into the following tabs:
Port Access
A Port is part an identifiable ID, for a given
communication session, over the Standard Internet Protocol (IP), used for accessing the
Internet, Local Area Networks, etc. There are specific Ports for specific activities. For
example, Port 80 is assigned to Web Accesses only, otherwise noted as "http://"
connections.
Port Access is managed for you by CYTLOK. However, you can add, delete and edit port
permissions yourself if desired, as you become more experienced in what is happening
behind the scenes.
This Feature is application-specific. Remember the <Default> application is the
entire machine.
LOCAL -
selecting this will deny/allow port access within the local machine.
Default, for <Default> is Allow (check).
REMOTE -
selecting this will deny/allow port access over the network or
internet. Default, for <Default> is Disallow (X).
Site Access
Unlike Port Access, Site Access is not an application-specific control. This
is a very flexible and powerful control where you control what hosts and IP addresses to
which the workstation has permission to connect. You may also define what type of services
the workstation can use upon connecting to a host or IP.
For example, your workstation can be configured so you may connect to a particular host
and allow web service, yet deny FTP access to that host.
The <Default> setting is Disallow (X).
The Log function provides a method for you to keep a written log of network access
and security violations.
The Log window is divided into the following tabs:
-
Network Tracker
-
Security Violations
Network Tracker
The Network Tracker logs the following network connection activities made from your
computer:
-
Application
– program tried to breach security
-
Host Address
– name of host network connection
-
Host Port
– host port number
-
Service
– service used, usually matches port number
-
Date/time
– date and time of connection
Right-click on the log at any time to clear the logs.
Security Violations
The Security Violations log shows which applications tried to perform an
unauthorized action and displays the following information:
-
Application
– which program tried to breach security
-
Violation
– type of security breach attempted
-
User action
– what was the response of the user
-
Date/time
– date and time of connection
Right-click on the log at any time to clear the logs.
©Copyright 1997-2001 Cytware Corporation. All Rights Reserved.
