Details

SharePoint-specific malware (i.e. anti-virus) protection software must be integrated and configured.

Rationale:

Configuring anti-virus settings ensures documents will be scanned for viruses upon download from and upload to the SharePoint server. Anti-virus settings are not configured by default, therefore leaving the documents downloaded from or uploaded to SharePoint open to potential malware.

Solution

1. Log on to the Central Administration website.
2. Navigate to Operations > Security Configuration.
3. Select Anti-virus.
4. SharePoint specific malware (i.e. anti-virus) protection software must be integrated and configured for each of the following:
o Scan documents on upload.
o Scan documents on download.
o Attempt to clean infected documents.

Supportive Information

The following resource is also helpful.

• https://workbench.cisecurity.org/files/2031

This security hardening control applies to the following category of controls within NIST 800-53: System and Information Integrity.This control applies to the following type of system Windows.

References

• 800-53|SI-3a.
• CSCv6|8.1
• CSCv6|8.6

Source

• Tenable.com/audits