The network element must update malicious code protection mechanisms and signature definitions whenever new releases are available in accordance with organizational configuration management policy and procedures.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
SRG-NET-000246-FW-NA	SRG-NET-000246-FW-NA	SRG-NET-000246-FW-NA_rule		Medium

Description
Malicious code includes viruses, worms, Trojan horses, and spyware. The code provides the ability for a malicious user to read from and write to files and folders on a computer's hard drive. It can also run and attach programs, which provide a high risk potential for the distribution of malicious mobile code. Malicious code can be transported by electronic mail, mail attachments, web accesses, and removable media. This control applies to the configuration of the anti-virus or HIDS protection installed on the network firewall. These are add-ons and are not core functions of the firewall application itself.

Description

Malicious code includes viruses, worms, Trojan horses, and spyware. The code provides the ability for a malicious user to read from and write to files and folders on a computer's hard drive. It can also run and attach programs, which provide a high risk potential for the distribution of malicious mobile code. Malicious code can be transported by electronic mail, mail attachments, web accesses, and removable media. This control applies to the configuration of the anti-virus or HIDS protection installed on the network firewall. These are add-ons and are not core functions of the firewall application itself.

STIG	Date
Firewall Security Requirements Guide	2012-12-10

Details

Check Text ( C-SRG-NET-000246-FW-NA_chk )
This requirement is NA for firewall. No fix required.

Fix Text (F-SRG-NET-000246-FW-NA_fix)
This requirement is NA for firewall. No fix required.