Whats the proper configuration of the Windows XP personal firewall to allow for configuration scanning by the NIH Incident Response Team (NIH IRT)?
As part of this program, OMB also requires verification of compliance with FDCC requirements using Security Content Automation Protocol (SCAP) scanning tools. NIH and HHS are in the process of acquiring SCAP technology which will allow IC’s to check their configurations as well as to provide reports to HHS and to the HHS Office of the Inspector General (OIG) upon request. Due to Windows XP firewall limitations, the capability to allow authorized scanning tools to audit systems for vulnerabilities is not feasible in light of FDCC. Scanning for vulnerabilities using traditional methods will be supplemented with the IRT’s capability to conduct Configuration scans of desktop and laptops using SCAP tools. The addition of these configuration audits along with the use of the Windows firewall will offset the risk of not using the traditional vulnerability scanning methods for workstations and laptops. Public-facing servers are not bound by FDCC and therefore traditional methods of vulnerabilit
