diarmf - implement

diarmf - implementSTIGS

STIG Update – DISA has released the following updated Security Guidance, Security Readiness Review Scripts and Benchmarks

Defense Information Systems Agency (DISA)

STIG Update – DISA has released the following updated Security Guidance, Security Readiness Review Scripts and Benchmarks


DISA has released the following updated Security Guidance, Security Readiness Review Scripts and Benchmarks:

Unclassified SRGs: http://iase.disa.mil/stigs/Pages/a-z.aspx
Network Device Management SRG – Ver 2, Rel 12
Voice Video Endpoint SRG – Ver 1, Rel 6

Unclassified Application STIGs: http://iase.disa.mil/stigs/app-security/Pages/index.aspx
Apache 2.2 STIG Windows – Ver 1, Rel 12
Apache 2.2 STIG UNIX – Ver 1, Rel 9
Application Security and Development STIG – Ver 4, Rel 4
Google Chrome Browser STIG – Ver 1, Rel 10
IIS 7.0 STIG – Ver 1, Rel 15
McAfee Virus Scan Enterprise for Linux 1.2x/2.0x Managed Client STIG – Ver 1, Rel 3
Microsoft Excel 2016 STIG – Ver 1, Rel 2
Microsoft Outlook 2013 STIG – Ver 1, Rel 11
Oracle HTTP Server 12.1.3 STIG – Ver 1, Rel 2
Oracle JRE 8 UNIX STIG – Ver 1, Rel 3
Oracle WebLogic Server 12c STIG – Ver 1, Rel 3

Unclassified Mobility STIG: http://iase.disa.mil/stigs/mobility/Pages/index.aspx
Microsoft Windows 10 Mobile STIG – Ver 1, Rel 3

Unclassified Network STIGs and Overviews: http://iase.disa.mil/stigs/net_perimeter/Pages/index.aspx
Cisco IOS XE Release 3 Router Overview – Ver 1, Rel 3
Cisco IOS XE Release 3 NDM STG – Ver 1, Rel 3
DNS Policy STIG – Ver 4, Rel 1.21
IBM DataPower NDM STIG – Ver 1, Rel 2
IPSEC VPN Gateway STIG – Ver 1, Rel 13
Juniper SRX Services Gateway (SG) Virtual Private Network (VPN) STIG – Ver 1, Rel 2
Network Firewall STIG – Ver 8, Rel 24
Network Infrastructure Policy STIG – Ver 9, Rel 4
Network Infrastruture Router L3 Switch STIG – Ver 8, Rel 24
Network L2 Switch STIG – Ver 8, Rel 22
Network Perimeter Router L3 Switch STIG – Ver 8, Rel 27
Removable Storage STIG – Ver 1, Rel 7

Unclassified HBSS STIGs: https://iase.disa.mil/stigs/hbss/Pages/index.aspx
McAfee Application Control STIG – Ver 1, Rel 2

Unclassified Operating System STIGs: http://iase.disa.mil/stigs/os/Pages/index.aspx
AIX 6.1 STIG – Ver 1, Rel 11
HP-UX 11.31 Manual STIG – Ver 1, Rel 15
IBM Hardware Management Console (HMC) STIG – Ver 1, Rel 5
Microsoft Windows 2008 DC STIG – Ver 6, Rel 38
Microsoft Windows 2008 MS STIG – Ver 6, Rel 38
Microsoft Windows 2008 R2 DC STIG – Ver 1, Rel 24
Microsoft Windows 2008 R2 MS STIG – Ver 1, Rel 24
Microsoft Windows 2012 and 2012 R2 DC STIG – Ver 2, Rel 10
Microsoft Windows 2012 and 2012 R2 MS STIG – Ver 2, Rel 10
Microsoft Windows 7 STIG – Ver 1, Rel 28
Microsoft Windows 8/8.1 STIG – Ver 1, Rel 19
Oracle Linux 6 Manual STIG – Ver 1, Rel 11
Red Hat 6 STIG – Ver 1, Rel 17
Red Hat 7 STIG – Ver 1, Rel 3
Solaris 10 SPARC Manual STIG – Ver 1, Rel 20
Solaris 10 x86 Manual STIG – Ver 1, Rel 20
Solaris 11 SPARC Manual STIG – Ver 1, Rel 13
Solaris 11 x86 Manual STIG – Ver 1, Rel 13
SUSE Linux Enterprise Server (SLES) v11 for System z STIG – Ver 1, Rel 11
zOS ACF2 STIG – Ver 6, Rel 33
zOS RACF STIG – Ver 6, Rel 33
zOS TSS STIG – Ver 6, Rel 33

FOUO Network STIGs: http://iase.disa.mil/stigs/net_perimeter/Pages/index.aspx
NOTE: DoD PKI Certificate Required
JIE Core Data Center (CDC) STIG – Ver 2, Rel 3
JIE Installation Processing Node (IPN) STIG – Ver 2, Rel 3

Benchmarks: http://iase.disa.mil/stigs/scap/Pages/index.aspx
Google Chrome for Windows STIG Benchmark Ver 1, Rel 5
HP-UX 11.31 STIG Benchmark – Ver 1, Rel 15
Microsoft Excel 2016 STIG Benchmark – Ver 1, Rel 2 (SCC tool use only)
Microsoft Outlook 2013 STIG Benchmark – Ver 1, Rel 6 (SCC tool use only)
Microsoft Outlook 2016 STIG Benchmark – Ver 1, Rel 3 (SCC tool use only)
Microsoft Windows 2008 DC STIG Benchmark – Ver 6, Rel 40
Microsoft Windows 2008 MS STIG Benchmark – Ver 6, Rel 40
Microsoft Windows 2008 R2 DC STIG Benchmark – Ver 1, Rel 26
Microsoft Windows 2008 R2 MS STIG Benchmark – Ver 1, Rel 27
Microsoft Windows 2012 and 2012 R2 DC STIG Benchmark – Ver 2, Rel 10
Microsoft Windows 2012 and 2012 R2 MS STIG Benchmark – Ver 2, Rel 10
Microsoft Windows 7 STIG Benchmark – Ver 1, Rel 34
Microsoft Windows 8/8.1 STIG Benchmark – Ver 1, Rel 20
Microsoft Windows Server 2016 STIG Benchmark – Ver 1, Rel 3
Red Hat 5 STIG Benchmark – Ver 1, Rel 19
Red Hat 6 STIG Benchmark – Ver 1, Rel 17
Solaris 10 SPARC STIG Benchmark – Ver 1, Rel 19
Solaris 10 x86 STIG Benchmark – Ver 1, Rel 19
Solaris 11 SPARC STIG Benchmark – Ver 1, Rel 8
Solaris 11 x86 STIG Benchmark – Ver 1, Rel 8

No Longer Supported: http://iase.disa.mil/stigs/sunset/Pages/index.aspx
BlackBerry for the OS 7 STIG – Ver 2, Rel 11
Good for Enterprise 8.x STIG – Ver 1, Rel 2
Microsoft Access 2007 STIG – Ver 4, Rel 15
Microsoft Excel 2007 STIG – Ver 4, Rel 13
Microsoft Infopath 2007 STIG – Ver 4, Rel 13
Microsoft Office System 2007 STIG – Ver 4, Rel 16
Microsoft Outlook 2007 STIG – Ver 4, Rel 16
Microsoft PowerPoint 2007 STIG – Ver 4, Rel 16
Microsoft Word 2007 STIG – Ver 4, Rel 15

 

read more
diarmf - implementSTIGS

STIG Update – Windows 10 Support Dates and Information

STIG windows 10

STIG Update – Windows 10 Support Dates and Information


Every Windows product has a lifecycle. The lifecycle begins when a product is released and ends when it’s no longer supported. Knowing key dates in this lifecycle helps you make informed decisions about when to upgrade or make other changes to your software. Below are the dates for Windows 10 lifecycle support:

Windows 10 version 1507  – May 9, 2017

Windows 10 version 1511 – October 10, 2017

Windows 10 version 1607  – Tentatively March 2018

Windows 10 version 1703  – Tentatively September 2018

Windows 10 Version v1511 will become unsupported on 10 October 2017 at which time it will become a CAT I severity to have it installed.  Organizations must upgrade to at least v1607 by that time.

It is recommended upgrading to the latest released version.

Refer to this link for additional information: https://support.microsoft.com/en-us/help/13853/windows-lifecycle-fact-sheet.

 

read more
diarmf - implementSTIGS

Group Policy Objects (GPOs) for Security Technical Implementation Guides (STIGs)

disa

STIG Update – Group Policy Objects (GPOs) for Security Technical Implementation Guides (STIGs) – September 2017


Group Policy Objects (GPOs) have been updated for September 2017. See the Change Log document included in the zip file for additional information.  DISA Risk Management Executive is posting the GPOs for use by system administrators to ease the burden in securing systems within their environment.  The GPOs can be found on IASE website on the Group Policy Objects tab located at this link: https://iase.disa.mil/stigs/Pages/index.aspx

List of GPOs currently in the package:

Office Products:
Access 2013
Access 2016
Excel 2013
Excel 2016
InfoPath 2013
Lync 2013
Office System 2013
Office System 2016
OneDrive for Business 2016
OneNote 2013
OneNote 2016
Outlook 2013
Outlook 2016
PowerPoint 2013
PowerPoint 2016
Project 2013
Project 2016
Publisher 2013
Publisher 2016
SharePoint Designer 2013
Skype for Business 2016
Visio 2013
Visio 2016
Word 2013
Word 2016

Browsers:
Internet Explorer 11
Google Chrome

Antivirus:
Windows Defender AV

Operating Systems:
Windows 10
Windows 7
Windows 8/8.1
Windows Firewall
Windows Server 2008 R2 DC
Windows Server 2008 R2 MS
Windows Server 2012 R2 DC
Windows Server 2012 R2 MS
Windows Server 2016

read more
diarmf - implementSTIGS

STIG Update – Draft Router SRG Version 3

cisco pro

STIG Update – Draft Router SRG Version 3


DISA has released the Draft Router Security Requirements Guide (SRG) Version 3 for review.  Please submit comments, recommended changes, and/or additions to the draft SRG by 28 September 2017 on the Comment Matrix spreadsheet, located with the SRG at https://iase.disa.mil/stigs/net_perimeter/network-infrastructure/Pages/routers-switches.aspx.  (NOTE:  this is an extension to the suspense date provided in the release memo.)  Comments should be sent via email to disa.stig_spt@mail.mil. Please include the title and version of the SRG in the subject line of your email.

 

read more
diarmf - implementSTIGS

STIG Update – Group Policy Objects (GPOs) for Security Technical Implementation Guides (STIGs)

Defense Information Systems Agency (DISA)

STIG Update – Group Policy Objects (GPOs) for Security Technical Implementation Guides (STIGs)


Group Policy Objects (GPOs) have been created for numerous Security Technical Implementation Guides (STIGs). DISA Risk Management Executive is posting the GPOs for use by system administrators to ease the burden in securing systems within their environment.

The GPOs can be found on IASE website on the Group Policy Objects tab located at this link: https://iase.disa.mil/stigs/Pages/index.aspx

List of GPOs currently in the package:

Office Products
Access 2013
Access 2016
Excel 2013
Excel 2016
InfoPath 2013
Lync 2013
Office System 2013
Office System 2016
OneDrive for Business 2016
OneNote 2013
OneNote 2016
Outlook 2013
Outlook 2016
PowerPoint 2013
PowerPoint 2016
Project 2013
Project 2016
Publisher 2013
Publisher 2016
SharePoint Designer 2013
Skype for Business 2016
Visio 2013
Visio 2016
Word 2013
Word 2016

Browsers
Google Chrome
Internet Explorer 11

Operating Systems
Windows 10
Windows 7
Windows 8/8.1
Windows Firewall
Windows Server 2008 R2 DC
Windows Server 2008 R2 MS
Windows Server 2012 R2 DC
Windows Server 2012 R2 MS
Windows Server 2016

read more
diarmf - implementSTIGS

STIG Update – Microsoft Windows 10 STIG – Version 1 Release 10

Windows-10-Logo

STIG Update – Microsoft Windows 10 STIG – Version 1 Release 10


DISA Risk Management Executive has updated the Microsoft Windows 10 Security Technical Implementation Guide (STIG) Version 1 Release 10.  The requirements of the STIG become effective immediately. The STIG is available on IASE at https://iase.disa.mil/stigs/os/windows/Pages/win10.aspx.

read more
1 2 3 11
Page 1 of 11