STIGQter: STIG Summary: Symantec ProxySG ALG Security Technical Implementation Guide Version: 1 Release: 3 Benchmark Date: 24 Apr 2020:

Symantec ProxySG providing content filtering must detect use of network services that have not been authorized or approved by the ISSM and ISSO, at a minimum.

DISA Rule

SV-104289r1_rule

Vulnerability Number

V-94335

Group Title

SRG-NET-000384-ALG-000136

Rule Version

SYMP-AG-000610

Severity

CAT II

CCI(s)

• CCI-002683 - The information system detects network services that have not been authorized or approved by the organization-defined authorization or approval processes.

Weight

10

Fix Recommendation

Enable network proxy services on the ProxySG.

1. Log on to the Web Management Console.
2. Browse to Configuration >> Services >> Proxy Services.
3. Click "New Service".

Check Contents

Determine what network proxy services are enabled on the ProxySG.

1. Log on to the Web Management Console.
2. Browse to Configuration >> Services >> Proxy Services.
3. Review each service specified in the list with the ProxySG administrator to verify that all approved networks have been accounted for.

If Symantec ProxySG providing content filtering does not detect use of network services that have not been authorized or approved by the ISSM and ISSO, at a minimum, this is a finding.

Vulnerability Number

V-94335

Documentable

False

Rule Version

SYMP-AG-000610

Severity Override Guidance

Determine what network proxy services are enabled on the ProxySG.

1. Log on to the Web Management Console.
2. Browse to Configuration >> Services >> Proxy Services.
3. Review each service specified in the list with the ProxySG administrator to verify that all approved networks have been accounted for.

If Symantec ProxySG providing content filtering does not detect use of network services that have not been authorized or approved by the ISSM and ISSO, at a minimum, this is a finding.

Check Content Reference

M

Target Key

3515

Comments