The ALG that implements spam protection mechanisms must be updated automatically.
An XCCDF Rule
Description
<VulnDiscussion>Originators of spam messages are constantly changing their techniques in order to defeat spam countermeasures; therefore, spam software must be constantly updated to address the changing threat. A manual update procedure is labor intensive and does not scale well in an enterprise environment. This risk may be mitigated by using an automatic update capability. Spam protection mechanisms include, for example, signature definitions, rule sets, and algorithms. This requirement applies to gateways and firewalls that perform content inspection or have higher-layer proxy functionality.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
- ID
- SV-68935r1_rule
- Severity
- Medium
- References
- Updated
Remediation - Manual Procedure
If the ALG provides spam protection functions, configure the ALG to automatically update spam protection mechanisms.