SV-79767r1_rule
V-65277
SRG-NET-000362-ALG-000155
WSDP-AG-000102
CAT II
10
XML DoS
Single message attacks: Jumbo Payload, Recursion, Mega Tags, Coercive parsing, Public key; Multiple message: XML flood, Resource hijack. WebGUI Services >> XML Firewall >> Edit XML Firewall XML, Threat Protection tab.
AAA DoS
Protection against DoS flooding attacks. WebGUI Objects >> XML Processing >> AAA Policy, Main tab.
PKCS #7
Document DoS signature-limit protection. WebGUI Objects >> XML Processing >> Processing Action, select Crypto Binary action type.
Service level monitor (SLM) policy. WebGUI Objects >> Monitoring >> SLM Policy.
XML DoS
Single message attacks: Jumbo Payload, Recursion, Mega Tags, Coercive parsing, Public key; Multiple message: XML flood, Resource hijack. WebGUI Services >> XML Firewall >> Edit XML Firewall XML, Threat Protection tab.
AAA DoS
Protection against DoS flooding attacks. WebGUI Objects >> XML Processing >> AAA Policy, Main tab.
PKCS #7
Document DoS signature-limit protection. WebGUI Objects >> XML Processing >> Processing Action, select Crypto Binary action type.
Service level monitor (SLM) policy. WebGUI Objects >> Monitoring >> SLM Policy.
If these items are not configured, this is a finding.
V-65277
False
WSDP-AG-000102
XML DoS
Single message attacks: Jumbo Payload, Recursion, Mega Tags, Coercive parsing, Public key; Multiple message: XML flood, Resource hijack. WebGUI Services >> XML Firewall >> Edit XML Firewall XML, Threat Protection tab.
AAA DoS
Protection against DoS flooding attacks. WebGUI Objects >> XML Processing >> AAA Policy, Main tab.
PKCS #7
Document DoS signature-limit protection. WebGUI Objects >> XML Processing >> Processing Action, select Crypto Binary action type.
Service level monitor (SLM) policy. WebGUI Objects >> Monitoring >> SLM Policy.
If these items are not configured, this is a finding.
M
2859