Details

Configuring anti-virus settings ensures documents will be scanned for viruses upon download from and upload to the SharePoint server. Anti-virus settings are not configured by default, therefore leaving SharePoint document libraries open to potential viruses.

Solution

Install and configure anti-virus package.
1. Install a SharePoint specific antivirus solution.
2. In SharePoint Central Administration, click Security.
3. On the Security page, in the General Security list, click Manage antivirus settings.
4. Check the boxes for the following:
– Scan documents on upload.
– Scan documents on download.
– Attempt to clean infected documents.
5. Click OK.

Supportive Information

The following resource is also helpful.

• https://iasecontent.disa.mil/stigs/zip/U_MS_SharePoint_2010_V1R9_STIG.zip

This security hardening control applies to the following category of controls within NIST 800-53: System and Communications Protection.This control applies to the following type of system Windows.

References

• 800-53|SC-18(2)
• CAT|I
• CCI|CCI-001167
• Rule-ID|SV-37995r3_rule
• STIG-ID|SHPT-00-000683
• Vuln-ID|V-29339

Source

• Tenable.com/audits