DISA McAfee VirusScan 8.8 Managed Client STIG v5r21

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: DISA McAfee VirusScan 8.8 Managed Client STIG v5r21

Updated: 5/27/2022

Authority: DISA STIG

Plugin: Windows

Revision: 1.7

Estimated Item Count: 98

File Details

Filename: DISA_STIG_McAfee_VirusScan_8.8_Managed_Client_v5r21.audit

Size: 446 kB

MD5: 7721f5adbbb21d3d2fb8e6cca7e24bc9
SHA256: 4dc7392a46da09b063a03f7c51ad9776c580aeb4468e2fac5414bc5dbe239224

Audit Items

DescriptionCategories
DISA_STIG_McAfee_VirusScan_8.8_Managed_Client_v5r21.audit from DISA McAfee VirusScan 8.8 Managed Client STIG v5r21 STIG
DTAG008 - The antivirus signature file age must not exceed 7 days.

SYSTEM AND INFORMATION INTEGRITY

DTAM001 - McAfee VirusScan On-Access General Policies must be configured to enable on-access scanning at system startup.

SYSTEM AND INFORMATION INTEGRITY

DTAM002 - McAfee VirusScan On-Access General Policies must be configured to scan boot sectors.

SYSTEM AND INFORMATION INTEGRITY

DTAM003 - McAfee VirusScan On-Access General Policies must be configured to scan floppy during shutdown.

SYSTEM AND INFORMATION INTEGRITY

DTAM004 - McAfee VirusScan On-Access General Policies must be configured to notify local users when detections occur.

SYSTEM AND INFORMATION INTEGRITY

DTAM005 - McAfee VirusScan On-Access General Policies must be configured to prevent users from removing messages from the list.

SYSTEM AND INFORMATION INTEGRITY

DTAM009 - McAfee VirusScan On-Access General Policies must be configured to log the scan sessions.

SYSTEM AND INFORMATION INTEGRITY

DTAM010 - McAfee VirusScan On-Access General Policies log file size must be restricted and be configured to at least 10MB - bLimitSize

SYSTEM AND INFORMATION INTEGRITY

DTAM010 - McAfee VirusScan On-Access General Policies log file size must be restricted and be configured to at least 10MB - dwMaxLogSizeMB

SYSTEM AND INFORMATION INTEGRITY

DTAM012 - McAfee VirusScan On-Access General Policies must be configured to log the session summary.

SYSTEM AND INFORMATION INTEGRITY

DTAM013 - McAfee VirusScan On-Access General Policies must be configured to log any failure to scan encrypted files.

SYSTEM AND INFORMATION INTEGRITY

DTAM016 - McAfee VirusScan must be configured to receive DAT and Engine updates - schedule is daily

SYSTEM AND INFORMATION INTEGRITY

DTAM016 - McAfee VirusScan must be configured to receive DAT and Engine updates - scheduling enabled

SYSTEM AND INFORMATION INTEGRITY

DTAM021 - McAfee VirusScan On-Delivery Email Scan Policies must be configured to enable on-delivery email scanning.

SYSTEM AND INFORMATION INTEGRITY

DTAM022 - McAfee VirusScan On-Delivery Email Scan Policies must be configured to find unknown program threats and Trojans.

SYSTEM AND INFORMATION INTEGRITY

DTAM023 - McAfee VirusScan On Delivery Email Scan Policies must be configured to find unknown macro threats.

SYSTEM AND INFORMATION INTEGRITY

DTAM027 - McAfee VirusScan On Delivery Email Scan Policies must be configured to decode MIME encoded files.

SYSTEM AND INFORMATION INTEGRITY

DTAM028 - McAfee VirusScan On Delivery Email Scan Policies must be configured to scan email message body.

SYSTEM AND INFORMATION INTEGRITY

DTAM029 - McAfee VirusScan On Delivery Email Scan Policies, when a threat is found, must be configured to clean attachments as the first action.

SYSTEM AND INFORMATION INTEGRITY

DTAM035 - McAfee VirusScan On-Delivery Email Scan Policies must be configured to record scanning activity in a log file.

SYSTEM AND INFORMATION INTEGRITY

DTAM036 - McAfee VirusScan On-Delivery Email Scan Policies log file size must be restricted and be configured to be at least 10MB - bLimitSize

SYSTEM AND INFORMATION INTEGRITY

DTAM036 - McAfee VirusScan On-Delivery Email Scan Policies log file size must be restricted and be configured to be at least 10MB - dwMaxLogSizeMB

SYSTEM AND INFORMATION INTEGRITY

DTAM039 - McAfee VirusScan On Delivery Email Scan Policies must be configured to clean attachments as the first action for when an unwanted program is found.

SYSTEM AND INFORMATION INTEGRITY

DTAM045 - McAfee VirusScan On-Demand scan must be configured to scan all fixed, or local, disks and running processes - Drives

SYSTEM AND INFORMATION INTEGRITY

DTAM045 - McAfee VirusScan On-Demand scan must be configured to scan all fixed, or local, disks and running processes - SpecialMemory

SYSTEM AND INFORMATION INTEGRITY

DTAM046 - McAfee VirusScan On-Demand scan must be configured to scan all subfolders.

SYSTEM AND INFORMATION INTEGRITY

DTAM047 - McAfee VirusScan On-Demand scan must be configured to scan boot sectors.

SYSTEM AND INFORMATION INTEGRITY

DTAM048 - McAfee VirusScan On-Demand scan must be configured to scan all files.

SYSTEM AND INFORMATION INTEGRITY

DTAM050 - McAfee VirusScan On-Demand scan must be configured so there are no exclusions from the scan unless exclusions have been documented with, and approved by, the ISSO/ISSM/DAA.

SYSTEM AND INFORMATION INTEGRITY

DTAM052 - McAfee VirusScan On-Demand scan must be configured to scan inside archives.

SYSTEM AND INFORMATION INTEGRITY

DTAM053 - McAfee VirusScan On-Demand scan must be configured to decode MIME encoded files.

SYSTEM AND INFORMATION INTEGRITY

DTAM054 - McAfee VirusScan On-Demand scan must be configured to find unknown program threats.

SYSTEM AND INFORMATION INTEGRITY

DTAM055 - McAfee VirusScan On-Demand scan must be configured to find unknown macro threats.

SYSTEM AND INFORMATION INTEGRITY

DTAM056 - McAfee VirusScan On-Demand scan actions, When a threat is found must be configured to clean files automatically as first action.

SYSTEM AND INFORMATION INTEGRITY

DTAM057 - McAfee VirusScan On-Demand scan actions, When a threat is found must be configured to delete files automatically if first action fails.

SYSTEM AND INFORMATION INTEGRITY

DTAM058 - McAfee VirusScan On-Demand scan must be configured to detect for unwanted programs.

SYSTEM AND INFORMATION INTEGRITY

DTAM059 - McAfee VirusScan On-Demand scan must be configured to record scanning activity in a log file.

SYSTEM AND INFORMATION INTEGRITY

DTAM060 - McAfee VirusScan On-Demand scan log file size must be restricted and be configured to at least 10MB - bLimitSize

SYSTEM AND INFORMATION INTEGRITY

DTAM060 - McAfee VirusScan On-Demand scan log file size must be restricted and be configured to at least 10MB - Max log file size

SYSTEM AND INFORMATION INTEGRITY

DTAM063 - McAfee VirusScan On-Demand scan must be configured to log any failure to scan encrypted files.

SYSTEM AND INFORMATION INTEGRITY

DTAM070 - McAfee VirusScan On-Demand scan must be scheduled to be executed at least on a weekly basis.
DTAM090 - McAfee VirusScan On-Access General Policies must be configured to enable scanning of scripts.

SYSTEM AND INFORMATION INTEGRITY

DTAM091 - McAfee VirusScan On-Access General Policies must be configured to block the connection when a threatened file is detected in a shared folder.

SYSTEM AND INFORMATION INTEGRITY

DTAM092 - McAfee VirusScan On-Access General Policies must be configured to unblock connections after a minimum of 30 minutes.

SYSTEM AND INFORMATION INTEGRITY

DTAM093 - McAfee VirusScan On-Access General Policies must be configured to block the connection when a file with a potentially unwanted program is detected in a shared folder.

SYSTEM AND INFORMATION INTEGRITY

DTAM100 - McAfee VirusScan On-Access Default Processes Policies must be configured to use only one scanning policy for all processes, unless the use of Low-Risk Processes/High-Risk Processes has been documented with, and approved by, the IAO/IAM.

SYSTEM AND INFORMATION INTEGRITY

DTAM101 - McAfee VirusScan On-Access Default Processes Policies must be configured to scan when writing to disk.

SYSTEM AND INFORMATION INTEGRITY

DTAM102 - McAfee VirusScan On-Access Default Processes Policies must be configured to scan when reading from disk.

SYSTEM AND INFORMATION INTEGRITY

DTAM103 - McAfee VirusScan On-Access Default Processes Policies must be configured to scan all files.