《WIN2K Checklist v2111 - Appendix B MSE安全攻防资料.doc》由会员分享,可在线阅读,更多相关《WIN2K Checklist v2111 - Appendix B MSE安全攻防资料.doc(32页珍藏版)》请在金锄头文库上搜索。
1、UNCLASSIFIEDWIN2K Security Checklist 2.1.11 Field Security OperationsAppendix B Defense Information Systems AgencyAPPENDIX B - INFORMATION ASSURANCE VULNERABILITY MANAGEMENT (IAVM) NOTICE COMPLIANCE5.9 IAVM ComplianceThe VCTS automatically sends out alerts that could affect critical systems. If appr
2、opriate actions are not taken, this could leave the systems open to a potential compromise. The platform must be checked to see if applicable IAVM Notices have been applied. Listed below are the procedures for checking for compliance of the IAVM Notices. Section 5.9.1 contains the requirements for W
3、indows 2000 specific bulletins. Sections 5.9.2 thru 5.9.6 contains the requirements for service and application specific bulletins. The 6 symbol indicates a check performed by the WinBatch scripts.NOTE: The vulnerabilities listed in Sections 5.9.1 are applicable to all systems (server or workstation
4、) with Windows 2000 installed. The vulnerabilities listed in other sections are in addition to those identified in Sections 5.9.1.APPENDIX B - INFORMATION ASSURANCE VULNERABILITY MANAGEMENT (IAVM) NOTICE COMPLIANCE15.9IAVM Compliance15.9.1Implementing DOD-CERT Information Assurance Vulnerability Man
5、agement (IAVM) Alerts, Bulletins and Tech Advisories - Windows 2000.35.9.1.1DOD-CERT IAVM Alerts (WinOS) - AntiVirus.35.9.1.2 DOD-CERT IAVM Bulletins (WinOS) -AntiVirus.35.9.1.3DOD-CERT IAVM Technical Advisories (WinOS) - Antivirus.45.9.1.4DOD-CERT IAVM Alerts (WinOS) - Service Pack.55.9.1.5DOD-CERT
6、 IAVM Bulletins (WinOS) - Service Pack.55.9.1.6DOD-CERT IAVM Technical Advisories (WinOS) - Service Pack.65.9.1.7DOD-CERT IAVM Alerts (WinOS) - HotFixes.75.9.1.8DOD-CERT IAVM Bulletins (WinOS) - HotFixes.85.9.1.9DOD-CERT IAVM Technical Advisories (WINOS) - HotFixes.95.9.2Implementing DOD-CERT Inform
7、ation Assurance Vulnerability Management (IAVM) Alerts, Bulletins and Tech Advisories Microsoft Applications105.9.2.1DOD-CERT IAVM Alerts Microsoft Applications.105.9.2.2DOD-CERT IAVM Bulletins Microsoft Applications.12DOD-CERT IAVM Technical Advisories - Microsoft Applications.155.9.3Implementing D
8、OD-CERT Information Assurance Vulnerability Management (IAVM) Alerts, Bulletins and Tech Advisories Web Servers195.9.3.1DOD-CERT IAVM Alerts (IAVM) Web Servers.195.9.3.2DOD-CERT IAVM Bulletins (IAVB) Web Servers.215.9.3.3DOD-CERT IAVM Technical Advisories Web Servers.215.9.4Implementing DOD-CERT Inf
9、ormation Assurance Vulnerability Management (IAVM) Alerts, Bulletins and Tech Advisories Web Browsers235.9.4.1DOD-CERT IAVM Alerts (IAVM) Web Browsers.235.9.4.2DOD-CERT IAVM Bulletins (IAVB) Web Browsers.245.9.4.3DOD-CERT IAVM Technical Advisories Web Browsers.255.9.5Implementing DOD-CERT Informatio
10、n Assurance Vulnerability Management (IAVM) Alerts, Bulletins and Tech Advisories - Services and Applications.275.9.5.1DOD-CERT IAVM Alerts (IAVM) - DNS Server.275.9.5.2DOD-CERT IAVM Bulletins (IAVB) - DNS Server.285.9.5.3DOD-CERT IAVM Technical Advisories - DNS Server.285.9.6Implementing DOD-CERT I
11、nformation Assurance Vulnerability Management (IAVM) Alerts, Bulletins and Tech Advisories Other Applications295.9.6.1DOD-CERT IAVM Alerts (IAVM) - Other Applications.295.9.6.2DOD-CERT IAVM Bulletins (IAVB) - Other Applications.305.9.6.3DOD-CERT IAVM Technical Advisories - Other Applications.325.9.1
12、 Implementing DOD-CERT Information Assurance Vulnerability Management (IAVM) Alerts, Bulletins and Tech Advisories - Windows 2000.5.9.1.1 DOD-CERT IAVM Alerts (WinOS) - AntiVirus. NOTE: IAVMs under this category have been expired by the CERT. Mark this PDI as “not a Finding” Category:IPDI:6.010: DOD
13、-CERT IAVM Alerts are not being responded to and implemented Windows OS.Reference:SECDEF Msg., ASD(C3I), Information Assurance Vulnerability Alert Process, DTG 252016Z June 1998DISA FSO NT/WIN2K Addendum, Section 2.4 and 7.4NSA WIN2K Guide, Group Policy: Security Configuration Toolset: Chap. 1, p. 1
14、15.9.1.2 DOD-CERT IAVM Bulletins (WinOS) -AntiVirus.NOTE: IAVMs under this category have been expired by the CERT. Mark this PDI as “not a Finding” Category:IIPDI:6.020: DOD-CERT IAVM Bulletins are not being responded to and implemented - NT.Reference:SECDEF Msg., ASD(C3I), Information Assurance Vul
15、nerability Alert Process, DTG 252016Z June 1998DISA FSO NT/WIN2K Addendum, Section 2.45.9.1.3 DOD-CERT IAVM Technical Advisories (WinOS) - Antivirus. NOTE: IAVMs under this category have been expired by the CERT. Mark this PDI as “not a Finding” Category:IIIPDI:6.030: DOD-CERT IAVM Technical Advisories are not being responded to and implemented (Windows OS) - Antivirus.Reference:SECDEF Msg., ASD(C3I), Information Assurance Vulnerability Alert Process, DTG 252016Z June 1998DISA FS
