Jun 17, 2024 |
Apr 12, 2023 Miscellaneous- Metadata updated.
- Platform check updated.
- Variables updated.
|
Mar 7, 2023 Miscellaneous- Metadata updated.
- References updated.
|
Jan 4, 2023 |
Aug 9, 2022 Functional Update- 2.1 Ensure Only Necessary Authentication and Authorization Modules Are Enabled
- 2.2 Ensure the Log Config Module Is Enabled
- 2.3 Ensure the WebDAV Modules Are Disabled
- 2.4 Ensure the Status Module Is Disabled
- 2.5 Ensure the Autoindex Module Is Disabled
- 2.6 Ensure the Proxy Modules Are Disabled
- 2.7 Ensure the User Directories Module Is Disabled
- 2.8 Ensure the Info Module Is Disabled
- 2.9 Ensure the Basic and Digest Authentication Modules are Disabled
- 5.9 Ensure Old HTTP Protocol Versions Are Disallowed - 'RewriteEngine on'
- 5.9 Ensure Old HTTP Protocol Versions Are Disallowed - 'RewriteRule configuration'
- 5.9 Ensure Old HTTP Protocol Versions Are Disallowed - 'httpd.conf <VirtualHost> RewriteEngine = on'
- 5.9 Ensure Old HTTP Protocol Versions Are Disallowed - 'httpd.conf <VirtualHost> RewriteOptions = inherit'
- 5.9 Ensure Old HTTP Protocol Versions Are Disallowed - 'httpd.conf RewriteCond = %{THE_REQUEST} !HTTP/1\.1$'
- 5.9 Ensure Old HTTP Protocol Versions Are Disallowed - Rewrite module not loaded
- 6.5 Ensure Applicable Patches Are Applied
- 7.1 Ensure mod_ssl and/or mod_nss Is Installed - 'mod_ssl is loaded'
- 7.7 Ensure SSL Compression is Not Enabled
- 9.5 Ensure the Timeout Limits for Request Headers is Set to 40 or Less - mod_reqtimeout
- 9.6 Ensure Timeout Limits for the Request Body Are Set Properly - mod_reqtimeout
|
Apr 25, 2022 |
Mar 29, 2022 Miscellaneous- Metadata updated.
- References updated.
|
Jun 17, 2021 Miscellaneous- Metadata updated.
- References updated.
|
May 6, 2021 Functional Update- 3.10 Ensure the ScoreBoard File Is Secured
- 3.7 Ensure the Core Dump Directory Is Secured
- 3.8 Ensure the Lock File Is Secured - 'LockFile permissions'
- 3.9 Ensure the Pid File Is Secured
- 4.1 Ensure Access to OS Root Directory Is Denied By Default - 'httpd.conf Deny = from all
- 4.1 Ensure Access to OS Root Directory Is Denied By Default - 'httpd.conf Order = Deny,Allow
- 4.1 Ensure Access to OS Root Directory Is Denied By Default - 'httpd.conf Require all denied
- 4.1 Ensure Access to OS Root Directory Is Denied By Default - 'httpd.conf no Allow directives exist'
- 4.1 Ensure Access to OS Root Directory Is Denied By Default - 'httpd.conf no Deny directives exist'
- 4.1 Ensure Access to OS Root Directory Is Denied By Default - 'httpd.conf no Require directives exist'
- 4.3 Ensure OverRide Is Disabled for the OS Root Directory
- 4.4 Ensure OverRide Is Disabled for All Directories
- 5.1 Ensure Options for the OS Root Directory Are Restricted
- 5.10 Ensure Access to .ht* Files Is Restricted
- 5.2 Ensure Options for the Web Root Directory Are Restricted
- 5.3 Ensure Options for Other Directories Are Minimized
- 5.5 Ensure the Default CGI Content printenv Script Is Removed
- 5.6 Ensure the Default CGI Content test-cgi Script Is Removed
- 5.7 Ensure HTTP Request Methods Are Restricted - 'No Deny/Allow'
- 5.7 Ensure HTTP Request Methods Are Restricted - 'Require all denied'
- 5.7 Ensure HTTP Request Methods Are Restricted - 'httpd.conf Document Root LimitExcept = GET,POST or OPTIONS only'
- 5.7 Ensure HTTP Request Methods Are Restricted - 'httpd.conf Document Root Order = Deny,Allow'
- 5.9 Ensure Old HTTP Protocol Versions Are Disallowed - 'httpd.conf <VirtualHost> RewriteEngine = on'
- 5.9 Ensure Old HTTP Protocol Versions Are Disallowed - 'httpd.conf <VirtualHost> RewriteOptions = inherit'
- 6.1 Ensure the Error Log Filename and Severity Level Are Configured Correctly - 'ErrorLog is configured'
- 6.1 Ensure the Error Log Filename and Severity Level Are Configured Correctly - 'httpd.conf <VirtualHost> ErrorLog is configured'
- 7.2 Ensure a Valid Trusted Certificate Is Installed
- 7.3 Ensure the Server's Private Key Is Protected
- 7.5 Ensure Weak SSL/TLS Ciphers Are Disabled - 'Global SSLCipherSuite'
- 7.5 Ensure Weak SSL/TLS Ciphers Are Disabled - 'Global SSLHonorCipherOrder = On'
- 7.5 Ensure Weak SSL/TLS Ciphers Are Disabled - 'VirtualHost SSLCipherSuite'
- 7.5 Ensure Weak SSL/TLS Ciphers Are Disabled - 'VirtualHost SSLHonorCipherOrder = On'
- 7.8 Ensure Medium Strength SSL/TLS Ciphers Are Disabled
- 7.9 Ensure All Web Content is Accessed via HTTPS
Miscellaneous- Metadata updated.
- References updated.
|
