Detections
Analytics

Item Search

NameAudit NamePluginCategory
2.1 Alter the Advertised server.info StringCIS Apache Tomcat 10 L2 v1.1.0Unix

SYSTEM AND INFORMATION INTEGRITY

2.1 Alter the Advertised server.info StringCIS Apache Tomcat 10 L2 v1.1.0 MiddlewareUnix

SYSTEM AND INFORMATION INTEGRITY

2.1 Alter the Advertised server.info StringCIS Apache Tomcat 9 L2 v1.2.0Unix

CONFIGURATION MANAGEMENT

2.1 Alter the Advertised server.info StringCIS Apache Tomcat 9 L2 v1.2.0 MiddlewareUnix

CONFIGURATION MANAGEMENT

10.19 Ensure Manager Application Passwords are EncryptedCIS Apache Tomcat 9 L1 v1.2.0Unix

IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

10.19 Ensure Manager Application Passwords are EncryptedCIS Apache Tomcat 9 L1 v1.2.0 MiddlewareUnix

IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

10.19 Ensure Manager Application Passwords are EncryptedCIS Apache Tomcat 10 L1 v1.1.0Unix

IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

10.19 Ensure Manager Application Passwords are EncryptedCIS Apache Tomcat 10.1 v1.0.0 L1Unix

IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

10.19 Ensure Manager Application Passwords are EncryptedCIS Apache Tomcat 10 L1 v1.1.0 MiddlewareUnix

IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

AS24-U1-000680 - The Apache web server must be configured to immediately disconnect or disable remote access to the hosted applications.DISA STIG Apache Server 2.4 Unix Server v3r1 MiddlewareUnix

ACCESS CONTROL

AS24-U1-000680 - The Apache web server must be configured to immediately disconnect or disable remote access to the hosted applications.DISA STIG Apache Server 2.4 Unix Server v3r1Unix

ACCESS CONTROL

AS24-W1-000680 - The Apache web server must be configured to immediately disconnect or disable remote access to the hosted applications.DISA STIG Apache Server 2.4 Windows Server v3r1Windows

ACCESS CONTROL

AS24-W1-000680 - The Apache web server must be configured to immediately disconnect or disable remote access to the hosted applications.DISA STIG Apache Server 2.4 Windows Server v2r3Windows

ACCESS CONTROL

BIND-9X-001702 - The BIND 9.x server implementation must prohibit the forwarding of queries to servers controlled by organizations outside of the U.S. Government.DISA BIND 9.x STIG v2r3Unix

CONFIGURATION MANAGEMENT

DISA_IBM_WebSphere_Traditional_9_v1r1_Middleware.audit for DISA IBM WebSphere Traditional 9 STIG v1r1 MiddlewareDISA IBM WebSphere Traditional 9 STIG v1r1 MiddlewareUnix
DISA_IBM_WebSphere_Traditional_9_v1r1.audit for DISA IBM WebSphere Traditional 9 STIG v1r1DISA IBM WebSphere Traditional 9 STIG v1r1Unix
DISA_IBM_WebSphere_Traditional_9_Windows_v1r1.audit for DISA IBM WebSphere Traditional 9 STIG v1r1DISA IBM WebSphere Traditional 9 Windows STIG v1r1Windows
DISA_STIG_Apache_Server-2.2_Unix_v1r11.audit from DISA Apache 2.2 Unix STIG v1r11DISA STIG Apache Server 2.2 Unix v1r11Unix
DISA_STIG_Apache_Site-2.2_Unix_v1r11.audit from DISA Apache 2.2 Unix STIG v1r11DISA STIG Apache Site 2.2 Unix v1r11Unix
DISA_STIG_Apache_Site-2.2_Windows_v1r13.audit from DISA APACHE 2.2 Site for Windows v1r13 STIGDISA STIG Apache Site 2.2 Windows v1r13Windows
DISA_STIG_BIND_9_v2r3.audit from DISA BIND 9.x v2r3 STIGDISA BIND 9.x STIG v2r3Unix
DISA_STIG_JBoss_EAP_6.3_v2r5.audit from DISA JBoss Enterprise Application Platform 6.3 v2r5 STIGDISA JBoss EAP 6.3 STIG v2r5Unix
DISA_STIG_Microsoft_Internet_Explorer_9_v1r15.audit from DISA Microsoft Internet Explorer 9 v1r15 STIGDISA STIG Microsoft Internet Explorer 9 v1r15Windows
DISA_STIG_MSSQL_2012_Instance-OS_v1r20.audit from DISA Microsoft SQL Server Instance 2012 v1r20 STIGDISA STIG SQL Server 2012 Database OS Audit v1r20Windows
DISA_STIG_Oracle_WebLogic_Server_12c_Linux_v2r1_Middleware.audit from DISA Oracle WebLogic Server 12c v2r1 STIGOracle WebLogic Server 12c Linux v2r1 MiddlewareUnix
DISA_STIG_PostgreSQL_9-x_on_RHEL_v2r5_OS.audit from DISA PostgreSQL 9.x v2r5 STIGDISA STIG PostgreSQL 9.x on RHEL OS v2r5Unix
DISA_STIG_Red_Hat_Enterprise_Linux_9_v2r2.audit from DISA Red Hat Enterprise Linux 9 v2r2 STIGDISA Red Hat Enterprise Linux 9 STIG v2r2Unix
GEN000100 - The operating system must be a supported release.DISA STIG Solaris 10 X86 v2r4Unix

CONFIGURATION MANAGEMENT

host-manager removedDISA STIG Apache Tomcat Application Server 9 v3r1 MiddlewareUnix
manager removedDISA STIG Apache Tomcat Application Server 9 v3r1 MiddlewareUnix
TCAT-AS-000040 - TLS 1.2 must be used on secured HTTP connectors.DISA STIG Apache Tomcat Application Server 9 v3r1 MiddlewareUnix

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

TCAT-AS-000050 - AccessLogValve must be configured for each application context.DISA STIG Apache Tomcat Application Server 9 v3r1 MiddlewareUnix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

TCAT-AS-000060 - Default password for keystore must be changed.DISA STIG Apache Tomcat Application Server 9 v3r1 MiddlewareUnix

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION

TCAT-AS-000520 - DefaultServlet directory listings parameter must be disabled.DISA STIG Apache Tomcat Application Server 9 v3r1 MiddlewareUnix

CONFIGURATION MANAGEMENT

TCAT-AS-000530 - The deployXML attribute must be set to false in hosted environments.DISA STIG Apache Tomcat Application Server 9 v3r1 MiddlewareUnix

CONFIGURATION MANAGEMENT

TCAT-AS-000570 - Tomcat default ROOT web application must be removed.DISA STIG Apache Tomcat Application Server 9 v3r1 MiddlewareUnix

CONFIGURATION MANAGEMENT

TCAT-AS-000690 - LDAP authentication must be secured.DISA STIG Apache Tomcat Application Server 9 v3r1 MiddlewareUnix

IDENTIFICATION AND AUTHENTICATION

TCAT-AS-000780 - Access to JMX management interface must be restricted.DISA STIG Apache Tomcat Application Server 9 v3r1 MiddlewareUnix

SYSTEM AND COMMUNICATIONS PROTECTION

TCAT-AS-000820 - Tomcat must be configured to limit data exposure between applications.DISA STIG Apache Tomcat Application Server 9 v3r1 MiddlewareUnix

SYSTEM AND COMMUNICATIONS PROTECTION

TCAT-AS-001020 - LockOutRealms must be used for management of Tomcat.DISA STIG Apache Tomcat Application Server 9 v3r1 MiddlewareUnix

ACCESS CONTROL

TCAT-AS-001030 - LockOutRealms failureCount attribute must be set to 5 failed logins for admin users.DISA STIG Apache Tomcat Application Server 9 v3r1 MiddlewareUnix

ACCESS CONTROL

TCAT-AS-001220 - $CATALINA_BASE/conf/ folder must be owned by root, group tomcat.DISA STIG Apache Tomcat Application Server 9 v3r1 MiddlewareUnix

CONFIGURATION MANAGEMENT

TCAT-AS-001250 - $CATALINA_BASE/logs/ folder must be owned by tomcat user, group tomcat.DISA STIG Apache Tomcat Application Server 9 v3r1 MiddlewareUnix

CONFIGURATION MANAGEMENT

TCAT-AS-001270 - $CATALINA_BASE/temp folder permissions must be set to 750.DISA STIG Apache Tomcat Application Server 9 v3r1 MiddlewareUnix

CONFIGURATION MANAGEMENT

TCAT-AS-001560 - AccessLogValve must be configured for Catalina engine.DISA STIG Apache Tomcat Application Server 9 v3r1 MiddlewareUnix

AUDIT AND ACCOUNTABILITY

TCAT-AS-001592 - Changes to $CATALINA_HOME/lib/ folder must be logged.DISA STIG Apache Tomcat Application Server 9 v3r1 MiddlewareUnix

AUDIT AND ACCOUNTABILITY

TCAT-AS-001660 - STRICT_SERVLET_COMPLIANCE must be set to true.DISA STIG Apache Tomcat Application Server 9 v3r1 MiddlewareUnix

CONFIGURATION MANAGEMENT

TCAT-AS-001670 - RECYCLE_FACADES must be set to true.DISA STIG Apache Tomcat Application Server 9 v3r1 MiddlewareUnix

CONFIGURATION MANAGEMENT

TCAT-AS-001680 - ALLOW_BACKSLASH must be set to false.DISA STIG Apache Tomcat Application Server 9 v3r1 MiddlewareUnix

CONFIGURATION MANAGEMENT

TCAT-AS-001731 - The application server must alert the system administrator (SA) and information system security offer (ISSO), at a minimum, in the event of a log processing failure.DISA STIG Apache Tomcat Application Server 9 v3r1 MiddlewareUnix

AUDIT AND ACCOUNTABILITY