STIGQter STIGQter: STIG Summary: Symantec ProxySG ALG Security Technical Implementation Guide Version: 1 Release: 3 Benchmark Date: 24 Apr 2020:

Symantec ProxySG providing content filtering must protect against known and unknown types of denial-of-service (DoS) attacks by employing rate-based attack prevention behavior analysis.

DISA Rule

SV-104271r1_rule

Vulnerability Number

V-94317

Group Title

SRG-NET-000362-ALG-000112

Rule Version

SYMP-AG-000520

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure denial-of-service attack detection/mitigation.

1. SSH into the ProxySG console and type "enable".
2. Enter the correct password and type "config".
3. Press "Enter" and type "attack-detection".
4. Type "client", press "Enter", type "enable-limits", and press "Enter".

Check Contents

View the denial-of-service attack detection/mitigation configuration.

1. SSH into the ProxySG console and type "enable".
2. Enter the correct password and type "config".
3. Press "Enter" and type "show attack-detection configuration".
4. Verify that "client limits enabled" equals "true".

If Symantec ProxySG providing content filtering does not protect against known and unknown types of Denial of Service (DoS) attacks by employing rate-based attack prevention behavior analysis, this is a finding.

Vulnerability Number

V-94317

Documentable

False

Rule Version

SYMP-AG-000520

Severity Override Guidance

View the denial-of-service attack detection/mitigation configuration.

1. SSH into the ProxySG console and type "enable".
2. Enter the correct password and type "config".
3. Press "Enter" and type "show attack-detection configuration".
4. Verify that "client limits enabled" equals "true".

If Symantec ProxySG providing content filtering does not protect against known and unknown types of Denial of Service (DoS) attacks by employing rate-based attack prevention behavior analysis, this is a finding.

Check Content Reference

M

Target Key

3515

Comments