STIGQter: STIG Summary: Symantec ProxySG ALG Security Technical Implementation Guide Version: 1 Release: 3 Benchmark Date: 24 Apr 2020:

Symantec ProxySG providing intermediary services for FTP must inspect outbound FTP communications traffic for protocol compliance and protocol anomalies.

DISA Rule

SV-104219r1_rule

Vulnerability Number

V-94265

Group Title

SRG-NET-000512-ALG-000065

Rule Version

SYMP-AG-000250

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.
• CCI-001125 - The information system enforces adherence to protocol format.

Weight

10

Fix Recommendation

Enable outbound FTP proxying to inspect this traffic for compliance and anomalies.

1. Log on to the Web Management Console.
2. Browse to Configuration >> Services >> Proxy Services.
3. Click the "Standard", "Predefined Service Group" and set FTP service to "Intercept".
4. Click "Apply".

Check Contents

Determine whether FTP proxying is enabled to provide inspection.

1. Log on to the Web Management Console.
2. Browse to Configuration >> Services >> Proxy Services.
3. Click the "Standard", "Predefined Service Group" and verify that the FTP service is set to "Intercept".

If Symantec ProxySG providing intermediary services for FTP does not inspect outbound FTP communications traffic for protocol compliance and protocol anomalies, this is a finding.

Vulnerability Number

V-94265

Documentable

False

Rule Version

SYMP-AG-000250

Severity Override Guidance

Determine whether FTP proxying is enabled to provide inspection.

1. Log on to the Web Management Console.
2. Browse to Configuration >> Services >> Proxy Services.
3. Click the "Standard", "Predefined Service Group" and verify that the FTP service is set to "Intercept".

If Symantec ProxySG providing intermediary services for FTP does not inspect outbound FTP communications traffic for protocol compliance and protocol anomalies, this is a finding.

Check Content Reference

M

Target Key

3515

Comments