Ensuring unnecessary services and functions are not enabled
Rule Title: RiOS must not have unnecessary services and functions enabled.
STIG ID: RICX-AG-000087
Rule ID: SV-77317r1_rule Severity: CAT II
Vuln ID: V-62827 Class: Unclass
Unrelated or unneeded proxy services increase the attack vector and add excessive complexity to the securing of RiOS. Multiple application proxies can be installed on many ALGs. However, proxy types must be limited to related functions. At a minimum, the web and email gateway represent different security domains/trust levels. Organizations should also consider separation of gateways that service the DMZ and the trusted network.
Verifying unnecessary services are not enabled
Verify that RiOS is configured to disable unrelated or unneeded application proxy services.
Obtain documentation for which applications are approved and disapproved for optimization by the organization.
1. Connect to the Management Console.
2. Choose Optimization to display the menu.
3. Verify that the approved or disapproved applications are enabled or disabled according to organization requirements. If optimization features are not enabled or disabled according to the organization’s requirements, this is a security vulnerability finding.
Disabling unnecessary services
Check to see if services other than the authorized services are enabled for optimization.
Obtain documentation for which applications are approved and disapproved for optimization by the organization.
1. Connect to the Management Console.
2. Choose Optimization to display the menu.
3. Set the approved or disapproved applications to enabled or disabled according to organization requirements.