DTAVSEL-109 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x Web UI must be disabled.

Information

If the Web UI was left enabled, the system to which the VSEL has been installed would be vulnerable for Web attacks. Disabling the Web UI will prevent the system from listening on HTTP.

Solution

From the ePO server console System Tree, select 'My Organization'. Select the 'Systems' tab. To show all systems in the System Tree, select 'This Group and All Subgroups' from the 'Preset:' drop-down list.

From the list of systems, locate the asset representing the Linux system being reviewed. Click on the system to open the System Information page.

Click on Actions >> Agent >> Modify Policies on a Single System.

From the 'Product:' drop-down list, select 'VirusScan Enterprise for Linux 1.9.x/2.0.x'.
From the 'Policy' column, click on the policy for the 'General Policies'.
In the 'Advanced' tab, select the check box for 'Disable client Web UI:'.

Click 'Save'.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_McAfee_VSEL_1-9_2-0_Y20M04_STIG.zip

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-7a., CAT|II, CCI|CCI-000381, Rule-ID|SV-77541r1_rule, STIG-ID|DTAVSEL-109, Vuln-ID|V-63051

Plugin: Unix

Control ID: 4efebd6be8fa6d525efcc2e1a53b01d05380359b563b494c83f1d5c3af3e9c9a