STIGQter: STIG Summary: Symantec ProxySG ALG Security Technical Implementation Guide Version: 1 Release: 3 Benchmark Date: 24 Apr 2020:

Symantec ProxySG must be configured to remove or disable unrelated or unneeded application proxy services.

DISA Rule

SV-104227r1_rule

Vulnerability Number

V-94273

Group Title

SRG-NET-000131-ALG-000086

Rule Version

SYMP-AG-000290

Severity

CAT II

CCI(s)

• CCI-000381 - The organization configures the information system to provide only essential capabilities.

Weight

10

Fix Recommendation

Disable/remove unnecessary proxy services on the ProxySG. In particular, reverse proxy services should not configured if not used.

1. Log on to the Web Management Console.
2. Browse to Configuration >> Services >> Proxy Services.
3. Review each service and service group specified in the list with the ProxySG administrator.
4. Remove any unnecessary services or service groups by selecting them and clicking "delete".
5. Click "Apply" once all unnecessary services or groups have been removed.

Check Contents

Determine what proxy services are enabled on the ProxySG.

1. Log on to the Web Management Console.
2. Browse to Configuration >> Services >> Proxy Services.
3. Review each service specified in the list with the ProxySG administrator to verify that each is required.

If Symantec ProxySG is not configured to remove or disable unrelated or unneeded application proxy services, this is a finding.

Vulnerability Number

V-94273

Documentable

False

Rule Version

SYMP-AG-000290

Severity Override Guidance

Determine what proxy services are enabled on the ProxySG.

1. Log on to the Web Management Console.
2. Browse to Configuration >> Services >> Proxy Services.
3. Review each service specified in the list with the ProxySG administrator to verify that each is required.

If Symantec ProxySG is not configured to remove or disable unrelated or unneeded application proxy services, this is a finding.

Check Content Reference

M

Target Key

3515

Comments