Details

Configuring anti-virus settings ensures documents will be scanned for viruses upon download from and upload to the SharePoint server. Anti-virus settings are not configured by default, therefore leaving the documents downloaded from or uploaded to SharePoint open to potential viruses.

Solution

Configure and integrate SharePoint-specific malware (i.e. anti-virus) protection software on the SharePoint server.

Install and configure anti-virus package.

Install a SharePoint Server 2010-specific antivirus package.

Log in to Central Administration.

Navigate to Operations >> Security Configuration.

Select Anti-virus.

Check the following boxes:
– Scan documents on upload.
– Scan documents on download.
– Attempt to clean infected documents.

Select ‘OK’.

Supportive Information

The following resource is also helpful.

• https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_SharePoint_2013_V2R2_STIG.zip

This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management, System and Communications Protection.This control applies to the following type of system Windows.

References

• 800-53|CM-6b.
• 800-53|SC-18(2)
• CAT|II
• CCI|CCI-000366
• CCI|CCI-001167
• Rule-ID|SV-223274r612235_rule
• STIG-ID|SP13-00-000195
• STIG-Legacy|SV-74441
• STIG-Legacy|V-60011
• Vuln-ID|V-223274

Source

• Tenable.com/audits