Detections
Analytics

DISA STIG IIS 6.0 Installation v6r1

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: DISA STIG IIS 6.0 Installation v6r1

Updated: 3/9/2017

Authority: DISA STIG

Plugin: Windows

Revision: 1.22

Estimated Item Count: 84

File Details

Filename: DISA_IIS_6_Installation.audit

Size: 153 kB

MD5: a0a33f737e1dfc826d3330e930a42680
SHA256: cd91e4e6a50cf76d7a3a0c5d18501019382579a6b8aeef7bacaa10b1603d9ffb

Audit Items

DescriptionCategories
W200 - Non-administrators are allowed access to the directory tree, the shell, or other operating system functions and utilities-command.com
W200 - Non-administrators are allowed access to the directory tree, the shell, or other operating system functions and utilities.-cmd.exe
W220 - Access to the web administration tool is not restricted to the Web Manager and the Web Manager's designess.
W300 - Web server system files do not conform to minmum file permission requirements. - '\inetpub'
W300 - Web server system files do not conform to minmum file permission requirements. - '\inetpub\AdminScripts'
W300 - Web server system files do not conform to minmum file permission requirements. - '\inetpub\ftproot'
W300 - Web server system files do not conform to minmum file permission requirements. - '\inetpub\ftproot\dropbox'
W300 - Web server system files do not conform to minmum file permission requirements. - '\inetpub\ftproot\ftpfiles'
W300 - Web server system files do not conform to minmum file permission requirements. - '\inetpub\mailroot'
W300 - Web server system files do not conform to minmum file permission requirements. - '\inetpub\wwwroot'
W300 - Web server system files do not conform to minmum file permission requirements. - '\inetpub\wwwroot\docs'
W300 - Web server system files do not conform to minmum file permission requirements. - '\inetpub\wwwroot\images'
W300 - Web server system files do not conform to minmum file permission requirements. - '\inetpub\wwwroot\scripts'
W300 - Web server system files do not conform to minmum file permission requirements. - '\system32\inetsrv'
W300 - Web server system files do not conform to minmum file permission requirements. - '\system32\inetsrv\*.bat'
W300 - Web server system files do not conform to minmum file permission requirements. - '\system32\inetsrv\*.exe'
W300 - Web server system files do not conform to minmum file permission requirements. - '\system32\inetsrv\ASP Compiled Templates'
W300 - Web server system files do not conform to minmum file permission requirements. - '\system32\inetsrv\data'
W300 - Web server system files do not conform to minmum file permission requirements. - '\system32\inetsrv\History'
W300 - Web server system files do not conform to minmum file permission requirements. - '\system32\inetsrv\iisadmin'
W300 - Web server system files do not conform to minmum file permission requirements. - '\system32\inetsrv\iisadmpwd'
W300 - Web server system files do not conform to minmum file permission requirements. - '\system32\inetsrv\inetmgr.exe'
W300 - Web server system files do not conform to minmum file permission requirements. - '\system32\inetsrv\MBSchema.bin.00000000h'
W300 - Web server system files do not conform to minmum file permission requirements. - '\system32\inetsrv\MBSchema.xml'
W300 - Web server system files do not conform to minmum file permission requirements. - '\system32\inetsrv\MetaBack'
W300 - Web server system files do not conform to minmum file permission requirements. - '\system32\inetsrv\metabase.bin'
W300 - Web server system files do not conform to minmum file permission requirements. - '\system32\inetsrv\metabase.xml'
W300 - Web server system files do not conform to minmum file permission requirements. - '\system32\inetsrv\oblt-log.log'
W300 - Web server system files do not conform to minmum file permission requirements. - '\system32\inetsrv\oblt-rep.log'
W300 - Web server system files do not conform to minmum file permission requirements. - '\system32\inetsrv\oblt-undo.log'
W300 - Web server system files do not conform to minmum file permission requirements. - '\system32\inetsrv\oblt-undone.lob'
W300 - Web server system files do not conform to minmum file permission requirements. - '\system32\inetsrv\urlscan'
W300 - Web server system files do not conform to minmum file permission requirements. - '\SysWOW64\inetsrv'
WA000-WI035 - The IISADMPWD directory has not been removed from the Web Server - permissions
WA000-WI035 - The IISADMPWD directory has not been removed from the Web Server.

CONFIGURATION MANAGEMENT

WA000-WI080 - The IIS Internet Printing Protocol is not disabled.

CONFIGURATION MANAGEMENT

WA000-WI100 - The File System Object component, is not required and is not disabled. - '{0D43FE01-F093-11CF-8940-00A0C9054228} Check'

CONFIGURATION MANAGEMENT

WA000-WI100 - The File System Object component, is not required and is not disabled. - 'Scripting.FileSystemObject Check'

CONFIGURATION MANAGEMENT

WA000-WI110 - The command shell options are not disabled.

ACCESS CONTROL

WA000-WI6080 - The AllowRestrictedChars registry entry is not defined.

SYSTEM AND INFORMATION INTEGRITY

WA000-WI6082 - The EnableNonUTF8 registry entry is not set properly.

SYSTEM AND INFORMATION INTEGRITY

WA000-WI6084 - The FavorUTF8 registry entry is not set properly.

SYSTEM AND INFORMATION INTEGRITY

WA000-WI6086 - The MaxFieldLength registry entry is not set properly.

SYSTEM AND COMMUNICATIONS PROTECTION

WA000-WI6088 - The MaxRequestBytes registry entry is not set properly.

SYSTEM AND COMMUNICATIONS PROTECTION

WA000-WI6090 - The UrlSegmentMaxLength registry entry is not set properly.

SYSTEM AND COMMUNICATIONS PROTECTION

WA000-WI6092 - The PercentUAllowed registry entry is not set properly.

SYSTEM AND INFORMATION INTEGRITY

WA000-WI6094 - The UriMaxUriBytes registry entry is not set properly.

SYSTEM AND COMMUNICATIONS PROTECTION

WA000-WI6096 - The UrlSegmentMaxCount registry entry is not set properly.

SYSTEM AND COMMUNICATIONS PROTECTION

WA050 - Trained staff are not available to respond to web server or web content problems.
WA060 - A public web server is not isolated in accordance with the DOD Network STIG and DOD Enclave STIG.