Check: AS24-W2-000560
Apache Server 2.4 Windows Site STIG:
AS24-W2-000560
(in versions v2 r1 through v1 r0.1)
Title
The Apache web server must be configured to provide clustering. (Cat II impact)
Discussion
The web server may host applications that display information that cannot be disrupted, such as information that is time critical or life threatening. In these cases, a web server that shuts down or ceases to be accessible when there is a failure is not acceptable. In these types of cases, clustering of web servers is used. Clustering of multiple web servers is a common approach to providing fail-safe application availability. To ensure application availability, the web server must provide clustering or some form of failover functionality. Satisfies: SRG-APP-000225-WSR-000141, SRG-APP-000356-WSR-000007
Check Content
Review the <'INSTALLED PATH'>\conf\httpd.conf file. Verify the "mod_proxy" is loaded. If it does not exist, this is a finding. If the "mod_proxy" module is loaded and the "ProxyPass" directive is not configured, this is a finding.
Fix Text
Edit the <'INSTALLED PATH'>\conf\httpd.conf file and load the "mod_proxy" module. Set the "ProxyPass" directive.
Additional Identifiers
Rule ID: SV-214381r397738_rule
Vulnerability ID: V-214381
Group Title: SRG-APP-000225-WSR-000141
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-001190 |
The information system fails to an organization-defined known-state for organization-defined types of failures. |
CCI-001844 |
The information system provides centralized management and configuration of the content to be captured in audit records generated by organization-defined information system components. |