Apache Server 2.4 UNIX Server STIG

Apache Server 2.4 UNIX Server Security Technical Implementation Guide

ID Vuln ID Title Cat Status
AS24-U1-000310 V-214244 The Apache web server must allow the mappings to unused and vulnerable scripts to be removed. Cat II
AS24-U1-000650 V-214258 The Apache web server must set an inactive timeout for sessions. Cat II
AS24-U1-000065 V-214231 The Apache web server must have system logging enabled. Cat II
AS24-U1-000470 V-214251 Cookies exchanged between the Apache web server and client, such as session cookies, must have security settings that disallow cookie access outside the originating Apache web server and hosted application. Cat II
AS24-U1-000330 V-214245 The Apache web server must have Web Distributed Authoring (WebDAV) disabled. Cat II
AS24-U1-000270 V-214242 The Apache web server must provide install options to exclude the installation of documentation, sample code, example applications, and tutorials. Cat I
AS24-U1-000900 V-214269 The Apache web server must remove all export ciphers to protect the confidentiality and integrity of transmitted information. Cat II
AS24-U1-000240 V-214239 The Apache web server must not perform user management for hosted applications. Cat II
AS24-U1-000160 V-214234 The Apache web server must use a logging mechanism that is configured to alert the Information System Security Officer (ISSO) and System Administrator (SA) in the event of a processing failure. Cat II
AS24-U1-000750 V-214265 The Apache web server must generate log records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT) which are stamped at a minimum granularity of one second. Cat II
AS24-U1-000590 V-214255 The Apache web server must be tuned to handle the operational requirements of the hosted application. Cat II
AS24-U1-000780 V-214266 The Apache web server must prohibit or restrict the use of nonsecure or unnecessary ports, protocols, modules, and/or services. Cat II
AS24-U1-000710 V-214262 The Apache web server must use a logging mechanism that is configured to allocate log record storage capacity large enough to accommodate the logging requirements of the Apache web server. Cat II
AS24-U1-000550 V-214254 The Apache web server must be built to fail to a known safe state if system initialization fails, shutdown fails, or aborts fail. Cat II
AS24-U1-000730 V-214264 The Apache web server must be configured to integrate with an organizations security infrastructure. Cat II

Print

Display this benchmark in a printer-friendly format for off-line reference. This display does not include any commands.
Print

Version Changes

If there are multiple versions of this benchmark, Xylok can display the differences between any changes in the checks.
Changes