Detections
Analytics

CIS Apache HTTP Server 2.4 L2 v2.1.0

Audit Details

Name: CIS Apache HTTP Server 2.4 L2 v2.1.0

Updated: 8/28/2024

Authority: CIS

Plugin: Unix

Revision: 1.2

Estimated Item Count: 39

File Details

Filename: CIS_Apache_HTTP_Server_2.4_Benchmark_v2.1.0_Level_2.audit

Size: 177 kB

MD5: 991a29c09710ad373d6da9ecb290f737
SHA256: 5cd2cc5dff522231429b496b1332f00ac329340412f715ab1bc41bce687e218d

Audit Changelog

 
Revision 1.2

Aug 28, 2024

Informational Update
  • 5.13 Ensure Access to Inappropriate File Extensions Is Restricted - 'httpd.conf FileMatch directive'
  • 5.13 Ensure Access to Inappropriate File Extensions Is Restricted - 'httpd.conf approved extention FileMatch directive exists'
  • 5.16 Ensure Browser Framing Is Restricted
  • 5.17 Ensure HTTP Header Referrer-Policy is set appropriately
  • 5.18 Ensure HTTP Header Permissions-Policy is set appropriately
  • 6.2 Ensure a Syslog Facility Is Configured for Error Logging - 'Main'
  • 6.2 Ensure a Syslog Facility Is Configured for Error Logging - 'VirtualHost'
  • 7.10 Ensure OCSP Stapling Is Enabled - SSLStaplingCache
  • 7.10 Ensure OCSP Stapling Is Enabled - SSLUseStapling
  • 7.11 Ensure HTTP Strict Transport Security Is Enabled
  • 8.3 Ensure All Default Apache Content Is Removed - 'httpd.conf Alias /icons/ /var/www/icons/ does not exist'
  • 8.3 Ensure All Default Apache Content Is Removed - 'httpd.conf Include conf/extra/httpd-autoindex.conf does not exists'
Miscellaneous
  • References updated.
Revision 1.1

Jun 17, 2024

Miscellaneous
  • Metadata updated.