Check: SP13-00-000195
MS SharePoint 2013 STIG:
SP13-00-000195
(in versions v1 r9 through v1 r3)
Title
SharePoint-specific malware (i.e. anti-virus) protection software must be integrated and configured. (Cat II impact)
Discussion
Configuring anti-virus settings ensures documents will be scanned for viruses upon download from and upload to the SharePoint server. Anti-virus settings are not configured by default, therefore leaving the documents downloaded from or uploaded to SharePoint open to potential viruses.
Check Content
Review the SharePoint server configuration to ensure SharePoint-specific malware (i.e. anti-virus) protection software is integrated and configured. Log on to Central Administrator. Navigate to Operations >> Security Configuration. Select Anti-virus. If any of the following boxes are unselected, this is a finding: - Scan documents on upload. - Scan documents on download. - Attempt to clean infected documents.
Fix Text
Configure and integrate SharePoint-specific malware (i.e. anti-virus) protection software on the SharePoint server. Install and configure anti-virus package. Install a SharePoint Server 2010-specific antivirus package. Log in to Central Administration. Navigate to Operations >> Security Configuration. Select Anti-virus. Check the following boxes: - Scan documents on upload. - Scan documents on download. - Attempt to clean infected documents. Select "OK".
Additional Identifiers
Rule ID: SV-74441r1_rule
Vulnerability ID: V-60011
Group Title: SRG-APP-000208
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-001167 |
The organization ensures the development of mobile code to be deployed in information systems meets organization-defined mobile code requirements. |
Controls
Number | Title |
---|---|
SC-18 (2) |
Acquisition / Development / Use |