Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-36677 | WN12-CC-000018 | SV-51606r1_rule | ECSC-1 | Low |
Description |
---|
Uncontrolled system updates can introduce issues to a system. Obtaining update components from an outside source may also potentially provide sensitive information outside of the enterprise. Optional component installation or repair must be obtained from an internal source. |
STIG | Date |
---|---|
Windows Server 2012 / 2012 R2 Member Server Security Technical Implementation Guide | 2015-06-26 |
Check Text ( None ) |
---|
None |
Fix Text (F-44727r1_fix) |
---|
Configure the policy value for Computer Configuration -> Administrative Templates -> System -> "Specify settings for optional component installation and component repair" to "Enabled" and with "Never attempt to download payload from Windows Update" selected. |