SP13-00-000195 - SharePoint-specific malware (i.e. anti-virus) protection software must be integrated and configured - 'Attempt to Clean Infected Documents is enabled'

Information

Configuring anti-virus settings ensures documents will be scanned for viruses upon download from and upload to the SharePoint server. Anti-virus settings are not configured by default, therefore leaving the documents downloaded from or uploaded to SharePoint open to potential viruses.

Solution

Configure and integrate SharePoint-specific malware (i.e. anti-virus) protection software on the SharePoint server.

Install and configure anti-virus package.

Install a SharePoint Server 2010-specific antivirus package.

Log in to Central Administration.

Navigate to Operations >> Security Configuration.

Select Anti-virus.

Check the following boxes:
- Scan documents on upload.
- Scan documents on download.
- Attempt to clean infected documents.

Select 'OK'.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_SharePoint_2013_V2R3_STIG.zip

Item Details

Category: CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|CM-6b., 800-53|SC-18(2), CAT|II, CCI|CCI-000366, CCI|CCI-001167, Rule-ID|SV-223274r612235_rule, STIG-ID|SP13-00-000195, STIG-Legacy|SV-74441, STIG-Legacy|V-60011, Vuln-ID|V-223274

Plugin: Windows

Control ID: 82fdf5c4ed5511257956410b5137a4a9a135d8b1bf495b9bf4431104d2317220