SHPT-00-000683 - SharePoint-specific malware software must be integrated and configured - 'Scan Documents on Upload is enabled'

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

SHPT-00-000683 - SharePoint-specific malware (i.e., anti-virus) software must be integrated and configured - 'Scan Documents on Upload is enabled'
Configuring anti-virus settings ensures documents will be scanned for viruses upon download from and upload to the SharePoint server. Anti-virus settings are not configured by default, therefore leaving SharePoint document libraries open to potential viruses.

Solution

Install and configure anti-virus package.
1. Install a SharePoint specific antivirus solution.
2. In SharePoint Central Administration, click Security.
3. On the Security page, in the General Security list, click Manage antivirus settings.
4. Check the boxes for the following-
- Scan documents on upload.
- Scan documents on download.
- Attempt to clean infected documents.
5. Click OK.

See Also

http://iasecontent.disa.mil/stigs/zip/Oct2015/U_Sharepoint_2010_V1R7_STIG.zip

Item Details

Category: SYSTEM AND INFORMATION INTEGRITY

References: 800-53|SI-3, CAT|I, CCI|CCI-001167, Rule-ID|SV-37995r3_rule, STIG-ID|SHPT-00-000683, Vuln-ID|V-29339

Plugin: Windows

Control ID: 5c49e95ae9d9a69d21093e84e4b5d46bdefd1d401985912feb48db69659fcfa5