Revision 1.1May 6, 2021
Functional Update
- WA000-WWA052 A22 - The '-FollowSymLinks' setting must be disabled.
- WA000-WWA054 A22 - Server side includes (SSIs) must run with execution capability disabled - +Includes
- WA000-WWA054 A22 - Server side includes (SSIs) must run with execution capability disabled - -+IncludesNOEXEC|-Includes
- WA000-WWA054 A22 - Server side includes (SSIs) must run with execution capability disabled - None
- WA000-WWA054 A22 - Server side includes (SSIs) must run with execution capability disabled - Options None
- WA000-WWA056 A22 - The MultiViews directive must be disabled.
- WA000-WWA058 A22 - Directory indexing must be disabled on directories not containing index files.
- WA00540 A22 - The web server must be configured to explicitly deny access to the OS root - Deny
- WA00540 A22 - The web server must be configured to explicitly deny access to the OS root - Order
- WA00545 A22 - Web server options for the OS root must be disabled.
- WA00547 A22 - The ability to override the access configuration for the OS root directory must be disabled.
- WA00565 A22 - HTTP request methods must be limited - Deny
- WA00565 A22 - HTTP request methods must be limited - LimitExcept
- WA00565 A22 - HTTP request methods must be limited - Order
- WG300 A22 - Web server system files must conform to minimum file permission requirements - cgi_bin
Miscellaneous
- Metadata updated.
- References updated.