UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

Access to the McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x Web UI must be enforced by firewall rules.


Overview

Finding ID Version Rule ID IA Controls Severity
V-63145 DTAVSEL-301 SV-77635r1_rule Medium
Description
The McAfee VirusScan Enterprise for Linux WEB GUI is the method for configuring the McAfee VSEL on a non-managed Linux system. The WEB GUI on the system could be used maliciously to gain unauthorized access to the system. By restricting access to interface by implementing firewall rules, the risk of unauthorized access will be mitigated.
STIG Date
McAfee VSEL 1.9/2.0 Local Client Security Technical Implementation Guide 2015-11-30

Details

Check Text ( C-63897r1_chk )
With the System Administrator's assistance, review the host-based firewall for rules to the McAfee VSEL Web UI's TCP/IP port.

If the host-based firewall does not have rules to restrict access to the McAfee VSEL Web UI, limiting access to specific IP addresses of System Administrators only, determine if the network-based firewall provides for that restriction.

If neither a host-based firewall nor a network-based firewall restricts access to the McAfee VSEL Web UI, this is a finding.
Fix Text (F-69063r1_fix)
Configure a host-based firewall or network-based firewall with rules to restrict access to the McAfee VSEL Web UI, limiting access to specific IP addresses of System Administrators only.