AS24-U2-000020 - The Apache web server must perform server-side session management - session_module
AS24-U2-000020 - The Apache web server must perform server-side session management - usertrack_module
AS24-U2-000030 - The Apache web server must use encryption strength in accordance with the categorization of data hosted by the Apache web server when remote connections are provided - ssl_module
AS24-U2-000090 - The Apache web server must produce log records containing sufficient information to establish what type of events occurred - log_config_module
AS24-U2-000660 - The Apache web server must set an inactive timeout for sessions - reqtimeout_module
AS24-U2-000880 - Cookies exchanged between the Apache web server and the client, such as session cookies, must have cookie properties set to prohibit client-side scripts from reading the cookie data - session_cookie_module
AS24-U2-000890 - Cookies exchanged between the Apache web server and the client, such as session cookies, must have cookie properties set to force the encryption of cookies - session_cookie_module