Detections
Analytics

CIS Apache HTTP Server 2.4 L2 v2.1.0 Middleware

Audit Details

Name: CIS Apache HTTP Server 2.4 L2 v2.1.0 Middleware

Updated: 9/9/2024

Authority: CIS

Plugin: Unix

Revision: 1.3

Estimated Item Count: 39

File Details

Filename: CIS_Apache_HTTP_Server_2.4_Benchmark_v2.1.0_Level_2_Middleware.audit

Size: 176 kB

MD5: 8ab068e8ae5c876422066f496176bc72
SHA256: 47b748e9c18f96d528264ed1f83d3f39d4634e8bc34cc40eb60493c76ee24bd6

Audit Changelog

 
Revision 1.3

Sep 9, 2024

Functional Update
  • 7.11 Ensure HTTP Strict Transport Security Is Enabled
Miscellaneous
  • Metadata updated.
Revision 1.2

Aug 28, 2024

Informational Update
  • 5.13 Ensure Access to Inappropriate File Extensions Is Restricted - 'httpd.conf FileMatch directive'
  • 5.13 Ensure Access to Inappropriate File Extensions Is Restricted - 'httpd.conf approved extention FileMatch directive exists'
  • 5.16 Ensure Browser Framing Is Restricted
  • 5.17 Ensure HTTP Header Referrer-Policy is set appropriately
  • 5.18 Ensure HTTP Header Permissions-Policy is set appropriately
  • 6.2 Ensure a Syslog Facility Is Configured for Error Logging - Main
  • 6.2 Ensure a Syslog Facility Is Configured for Error Logging - VirtualHost
  • 7.10 Ensure OCSP Stapling Is Enabled - SSLStaplingCache
  • 7.10 Ensure OCSP Stapling Is Enabled - SSLUseStapling
  • 7.11 Ensure HTTP Strict Transport Security Is Enabled
  • 8.3 Ensure All Default Apache Content Is Removed - 'httpd.conf Alias /icons/ /var/www/icons/ does not exist'
  • 8.3 Ensure All Default Apache Content Is Removed - 'httpd.conf Include conf/extra/httpd-autoindex.conf does not exists'
Miscellaneous
  • References updated.
Revision 1.1

Jun 17, 2024

Miscellaneous
  • Metadata updated.