| 1.9.29 Interactive logon: Require smart card | CIS Windows 2008 SSLF v1.2.0 | Windows | ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION |
| 3.097 - The system is configured for a greater keep-alive time than recommended. | DISA Windows Vista STIG v6r41 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| 3.101 - The system must be configured to ignore NetBIOS name release requests except from WINS servers. | DISA Windows Vista STIG v6r41 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| 3.104 - The system is configured to detect and configure default gateway addresses. | DISA Windows Vista STIG v6r41 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| 5.098 - The system must limit how many times unacknowledged TCP data is retransmitted. | DISA Windows Vista STIG v6r41 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| 5.239 - Windows Explorer - Heap Termination | DISA Windows Vista STIG v6r41 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| DO6740-ORACLE11 - The Oracle Listener ADMIN_RESTRICTIONS parameter if present should be set to ON - '%ORACLE_HOME%\NETWORK\ADMIN\listener.ora ADMIN_RESTRICTIONS_{listener} = on' | DISA STIG Oracle 11 Installation v9r1 Windows | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| DO6740-ORACLE11 - The Oracle Listener ADMIN_RESTRICTIONS parameter if present should be set to ON - '$ORACLE_HOME/network/admin/listener.ora ADMIN_RESTRICTIONS_{listener} = on' | DISA STIG Oracle 11 Installation v9r1 Linux | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| DO6740: Oracle listener ADMIN_RESTRICTIONS parameter - '%ORACLE_HOME%\NETWORK\ADMIN\listener.ora ADMIN_RESTRICTIONS_{listener} = on' | DISA STIG Oracle 11 Installation v8r20 Windows | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| DO6740: Oracle listener ADMIN_RESTRICTIONS parameter - '%ORACLE_HOME%\NETWORK\ADMIN\listener.ora ADMIN_RESTRICTIONS_{listener} = on' | DISA STIG Oracle 11 Installation v8r19 Windows | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| DO6740: Oracle listener ADMIN_RESTRICTIONS parameter - '$ORACLE_HOME/network/admin/listener.ora ADMIN_RESTRICTIONS_{listener} = on' | DISA STIG Oracle 11 Installation v8r19 Linux | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| DO6740: Oracle listener ADMIN_RESTRICTIONS parameter - '$ORACLE_HOME/network/admin/listener.ora ADMIN_RESTRICTIONS_{listener} = on' | DISA STIG Oracle 11 Installation v8r20 Linux | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| GEN000450 - The system must limit users to 10 simultaneous system logins in accordance with operational requirements | DISA STIG HP-UX 11.31 v1r19 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| GEN003612 - The system must be configured to use TCP syncookies when experiencing a TCP SYN flood. | DISA STIG AIX 5.3 v1r2 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| NET0375 - The device must be configured to protect the network against denial of service attacks such as Ping of Death, TCP SYN floods, etc. | DISA STIG Cisco Firewall v8r25 | Cisco | SYSTEM AND COMMUNICATIONS PROTECTION |
| NET0790 - IP directed broadcast is not disabled. | DISA STIG Cisco Perimeter Router v8r32 | Cisco | SYSTEM AND COMMUNICATIONS PROTECTION |
| NET0790 - IP directed broadcast is not disabled. | DISA STIG Cisco Infrastructure Router v8r29 | Cisco | SYSTEM AND COMMUNICATIONS PROTECTION |
| NET0960 - Routers are not set to intercept TCP SYN attacks - 'access-list TCP_INTERCEPT permit tcp any INTERNAL_NETWORK' | DISA STIG Cisco Perimeter Router v8r32 | Cisco | SYSTEM AND COMMUNICATIONS PROTECTION |
| NET0960 - TCP intercept features must be provided by the network device - tcp-flags | DISA STIG Juniper Perimeter Router V8R30 | Juniper | SYSTEM AND COMMUNICATIONS PROTECTION |
| NET0965 - The network device must drop half-open TCP connections through filtering thresholds or timeout periods. - 'connection timeout' | DISA STIG Cisco Firewall v8r24 | Cisco | SYSTEM AND COMMUNICATIONS PROTECTION |
| NET0965 - The network device must drop half-open TCP connections through filtering thresholds or timeout periods. - 'connection timeout' | DISA STIG Cisco Firewall v8r25 | Cisco | SYSTEM AND COMMUNICATIONS PROTECTION |
| NET0965 - The network device must drop half-open TCP connections through filtering thresholds or timeout periods. - 'policy-map' | DISA STIG Cisco Firewall v8r24 | Cisco | SYSTEM AND COMMUNICATIONS PROTECTION |
| NET0965 - The network device must drop half-open TCP connections through filtering thresholds or timeout periods. - 'service-policy' | DISA STIG Cisco Firewall v8r24 | Cisco | SYSTEM AND COMMUNICATIONS PROTECTION |
| WA000-WI6022 IIS7 - The maximum number of requests an application pool can process must be set. | DISA IIS 7.0 Web Site v1r19 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| WA000-WI6030 IIS7 - The maximum queue length for HTTP.sys must be managed. | DISA IIS 7.0 Web Site v1r19 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| WA000-WI6034 IIS7 - An application pool's rapid fail protection must be enabled. | DISA IIS 7.0 Web Site v1r19 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| WA000-WI6036 IIS7 - An application pool's rapid fail protection settings must be managed. | DISA IIS 7.0 Web Site v1r19 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| WA000-WI6086 IIS6 - The MaxFieldLength registry entry must be set properly. | DISA STIG IIS 6.0 Server v6r16 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| WA000-WI6088 IIS6 - The MaxRequestBytes registry entry must be set properly. | DISA STIG IIS 6.0 Server v6r16 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| WA000-WI6090 IIS6 - The UrlSegmentMaxLength registry entry must be set properly. | DISA STIG IIS 6.0 Server v6r16 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| WA000-WI6094 IIS6 - The UriMaxUriBytes registry entry must be set properly. | DISA STIG IIS 6.0 Server v6r16 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| WA000-WI6096 IIS6 - The UrlSegmentMaxCount registry entry must be set properly. | DISA STIG IIS 6.0 Server v6r16 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| WA000-WI6098 IIS6 - The MaxRequestEntityAllowed metabase value must be defined. - 'IisWebDirectorySetting' | DISA STIG IIS 6.0 Site Checklist v6r16 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| WA000-WI6098 IIS6 - The MaxRequestEntityAllowed metabase value must be defined. - 'IisWebFileSetting' | DISA STIG IIS 6.0 Site Checklist v6r16 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| WA000-WI6098 IIS6 - The MaxRequestEntityAllowed metabase value must be defined. - 'IisWebServerSetting' | DISA STIG IIS 6.0 Site Checklist v6r16 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| WA000-WI6098 IIS6 - The MaxRequestEntityAllowed metabase value must be defined. - 'IisWebServiceSetting' | DISA STIG IIS 6.0 Site Checklist v6r16 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| WA000-WI6098 IIS6 - The MaxRequestEntityAllowed metabase value must be defined. - 'IisWebVirtualDirSetting' | DISA STIG IIS 6.0 Site Checklist v6r16 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| WA000-WWA020 W22 - The Timeout directive must be properly set. | DISA STIG Apache Server 2.2 Windows v1r12 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| WA000-WWA020 W22 - The Timeout directive must be properly set. | DISA STIG Apache Server 2.2 Windows v1r13 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| WA000-WWA022 W22 - The KeepAlive directive must be enabled. | DISA STIG Apache Server 2.2 Windows v1r12 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| WA000-WWA022 W22 - The KeepAlive directive must be enabled. | DISA STIG Apache Server 2.2 Windows v1r13 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| WA000-WWA024 W22 - The KeepAliveTimeout directive must be defined. | DISA STIG Apache Server 2.2 Windows v1r12 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| WA000-WWA024 W22 - The KeepAliveTimeout directive must be defined. | DISA STIG Apache Server 2.2 Windows v1r13 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| WA000-WWA028 A22 - The httpd.conf MinSpareServers directive must be set properly. | DISA STIG Apache Server 2.2 Unix v1r10 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| WA000-WWA028 A22 - The httpd.conf MinSpareServers directive must be set properly. | DISA STIG Apache Server 2.2 Unix v1r11 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| WA000-WWA030 A22 - The httpd.conf MaxSpareServers directive must be set properly. | DISA STIG Apache Server 2.2 Unix v1r10 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| WA000-WWA030 A22 - The httpd.conf MaxSpareServers directive must be set properly. | DISA STIG Apache Server 2.2 Unix v1r11 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| WA000-WWA032 A22 - The httpd.conf MaxClients directive must be set properly. | DISA STIG Apache Server 2.2 Unix v1r10 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| WA000-WWA032 A22 - The httpd.conf MaxClients directive must be set properly. | DISA STIG Apache Server 2.2 Unix v1r11 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| WG410 IIS6 - Interactive scripts must have proper access controls. - 'AspScriptTimeout set to 90 or less' | DISA STIG IIS 6.0 Site Checklist v6r16 | Windows | ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION |
