Check: SP13-00-000195
Microsoft SharePoint 2013 STIG:
SP13-00-000195
(in versions v2 r3 through v2 r1)
Title
SharePoint-specific malware (i.e. anti-virus) protection software must be integrated and configured. (Cat II impact)
Discussion
Configuring anti-virus settings ensures documents will be scanned for viruses upon download from and upload to the SharePoint server. Anti-virus settings are not configured by default, therefore leaving the documents downloaded from or uploaded to SharePoint open to potential viruses.
Check Content
Review the SharePoint server configuration to ensure SharePoint-specific malware (i.e. anti-virus) protection software is integrated and configured. Log on to Central Administrator. Navigate to Operations >> Security Configuration. Select Anti-virus. If any of the following boxes are unselected, this is a finding: - Scan documents on upload. - Scan documents on download. - Attempt to clean infected documents.
Fix Text
Configure and integrate SharePoint-specific malware (i.e. anti-virus) protection software on the SharePoint server. Install and configure anti-virus package. Install a SharePoint Server 2010-specific antivirus package. Log in to Central Administration. Navigate to Operations >> Security Configuration. Select Anti-virus. Check the following boxes: - Scan documents on upload. - Scan documents on download. - Attempt to clean infected documents. Select "OK".
Additional Identifiers
Rule ID: SV-223274r612235_rule
Vulnerability ID: V-223274
Group Title: SRG-APP-000516
Expert Comments
CCIs
| Number | Definition |
|---|---|
| CCI-000366 |
The organization implements the security configuration settings. |
| CCI-001167 |
The organization ensures the development of mobile code to be deployed in information systems meets organization-defined mobile code requirements. |