CCI|CCI-001762

Title

The organization disables organization-defined functions, ports, protocols, and services within the information system deemed to be unnecessary and/or nonsecure.

Reference Item Details

Reference: CCI - DISA Control Correlation Identifier

Category: 2013

Audit Items

View all Reference Audit Items

Name	Plugin	Audit Name
APPNET0075 - Disable TLS RC4 cipher in .Net	Windows	DISA STIG for Microsoft Dot Net Framework 4.0 v1r9
APPNET0075 - Disable TLS RC4 cipher in .Net	Windows	DISA STIG for Microsoft Dot Net Framework 4.0 v2r4
APPNET0075 - Disable TLS RC4 cipher in .Net	Windows	DISA STIG for Microsoft Dot Net Framework 4.0 v2r1
APPNET0075 - Disable TLS RC4 cipher in .Net - Wow6432Node	Windows	DISA STIG for Microsoft Dot Net Framework 4.0 v1r9
APPNET0075 - Disable TLS RC4 cipher in .Net - Wow6432Node	Windows	DISA STIG for Microsoft Dot Net Framework 4.0 v2r1
APPNET0075 - Disable TLS RC4 cipher in .Net.	Windows	DISA STIG for Microsoft Dot Net Framework 4.0 v2r3
AS24-U1-000780 - The Apache web server must prohibit or restrict the use of nonsecure or unnecessary ports, protocols, modules, and/or services.	Unix	DISA STIG Apache Server 2.4 Unix Server v2r5
AS24-U1-000780 - The Apache web server must prohibit or restrict the use of nonsecure or unnecessary ports, protocols, modules, and/or services.	Unix	DISA STIG Apache Server 2.4 Unix Server v2r6 Middleware
AS24-U1-000780 - The Apache web server must prohibit or restrict the use of nonsecure or unnecessary ports, protocols, modules, and/or services.	Unix	DISA STIG Apache Server 2.4 Unix Server v2r3
AS24-U1-000780 - The Apache web server must prohibit or restrict the use of nonsecure or unnecessary ports, protocols, modules, and/or services.	Unix	DISA STIG Apache Server 2.4 Unix Server v2r5 Middleware
AS24-U1-000780 - The Apache web server must prohibit or restrict the use of nonsecure or unnecessary ports, protocols, modules, and/or services.	Unix	DISA STIG Apache Server 2.4 Unix Server v2r3 Middleware
AS24-U1-000780 - The Apache web server must prohibit or restrict the use of nonsecure or unnecessary ports, protocols, modules, and/or services.	Unix	DISA STIG Apache Server 2.4 Unix Server v2r6
AS24-U1-000780 - The Apache web server must prohibit or restrict the use of nonsecure or unnecessary ports, protocols, modules, and/or services.	Unix	DISA STIG Apache Server 2.4 Unix Server v2r7 Middleware
AS24-U1-000780 - The Apache web server must prohibit or restrict the use of nonsecure or unnecessary ports, protocols, modules, and/or services.	Unix	DISA STIG Apache Server 2.4 Unix Server v2r7
AS24-W2-000780 - The Apache web server must prohibit or restrict the use of nonsecure or unnecessary ports, protocols, modules, and/or services.	Windows	DISA STIG Apache Server 2.4 Windows Site v1r3
AS24-W2-000780 - The Apache web server must prohibit or restrict the use of nonsecure or unnecessary ports, protocols, modules, and/or services.	Windows	DISA STIG Apache Server 2.4 Windows Site v2r1
DB2X-00-008300 - DB2 must disable network functions, ports, protocols, and services deemed by the organization to be nonsecure, in accord with the Ports, Protocols, and Services Management (PPSM) guidance	Unix	DISA STIG IBM DB2 v10.5 LUW v2r1 OS Linux
DB2X-00-008300 - DB2 must disable network functions, ports, protocols, and services deemed by the organization to be nonsecure, in accord with the Ports, Protocols, and Services Management (PPSM) guidance	Windows	DISA STIG IBM DB2 v10.5 LUW v2r1 OS Windows
DB2X-00-008300 - DB2 must disable network functions, ports, protocols, and services deemed by the organization to be nonsecure, in accord with the Ports, Protocols, and Services Management (PPSM) guidance - SSL	Windows	DISA STIG IBM DB2 v10.5 LUW v1r4 OS Windows
DB2X-00-008300 - DB2 must disable network functions, ports, protocols, and services deemed by the organization to be nonsecure, in accord with the Ports, Protocols, and Services Management (PPSM) guidance - SSL	Unix	DISA STIG IBM DB2 v10.5 LUW v1r4 OS Linux
DB2X-00-008300 - DB2 must disable network functions, ports, protocols, and services deemed by the organization to be nonsecure, in accord with the Ports, Protocols, and Services Management (PPSM) guidance - SSL_SVCENAME	Unix	DISA STIG IBM DB2 v10.5 LUW v1r4 OS Linux
DB2X-00-008300 - DB2 must disable network functions, ports, protocols, and services deemed by the organization to be nonsecure, in accord with the Ports, Protocols, and Services Management (PPSM) guidance - SSL_SVCENAME	Windows	DISA STIG IBM DB2 v10.5 LUW v1r4 OS Windows
DB2X-00-008300 - DB2 must disable network functions, ports, protocols, and services deemed by the organization to be nonsecure, in accord with the Ports, Protocols, and Services Management (PPSM) guidance - SVCENAME	Unix	DISA STIG IBM DB2 v10.5 LUW v1r4 OS Linux
DB2X-00-008300 - DB2 must disable network functions, ports, protocols, and services deemed by the organization to be nonsecure, in accord with the Ports, Protocols, and Services Management (PPSM) guidance - SVCENAME	Windows	DISA STIG IBM DB2 v10.5 LUW v1r4 OS Windows
DB2X-00-008300 - DB2 must disable network ports and services deemed by the organization to be nonsecure - SSL_SVCENAME	Windows	DISA STIG IBM DB2 v10.5 LUW v1r3 OS Windows
DB2X-00-008300 - DB2 must disable network ports and services deemed by the organization to be nonsecure - SSL_SVCENAME	Unix	DISA STIG IBM DB2 v10.5 LUW v1r3 OS Linux
DB2X-00-008300 - DB2 must disable network ports and services deemed by the organization to be nonsecure - SVCENAME	Unix	DISA STIG IBM DB2 v10.5 LUW v1r3 OS Linux
DB2X-00-008300 - DB2 must disable network ports and services deemed by the organization to be nonsecure - SVCENAME	Windows	DISA STIG IBM DB2 v10.5 LUW v1r3 OS Windows
DB2X-00-008300 - DB2 must disable network protocols, and services deemed by the organization to be nonsecure - SSL	Unix	DISA STIG IBM DB2 v10.5 LUW v1r3 OS Linux
DB2X-00-008300 - DB2 must disable network protocols, and services deemed by the organization to be nonsecure - SSL	Windows	DISA STIG IBM DB2 v10.5 LUW v1r3 OS Windows
DKER-EE-001050 - TCP socket binding for all Docker Engine - Enterprise nodes in a Universal Control Plane (UCP) cluster must be disabled.	Unix	DISA STIG Docker Enterprise 2.x Linux/Unix v1r1
DKER-EE-001050 - TCP socket binding for all Docker Engine - Enterprise nodes in a Universal Control Plane (UCP) cluster must be disabled.	Unix	DISA STIG Docker Enterprise 2.x Linux/Unix v2r1
DKER-EE-003560 - Docker Enterprise network ports on all running containers must be limited to what is needed.	Unix	DISA STIG Docker Enterprise 2.x Linux/Unix v1r1
DKER-EE-003560 - Docker Enterprise network ports on all running containers must be limited to what is needed.	Unix	DISA STIG Docker Enterprise 2.x Linux/Unix v2r1
DTBC-0074 - Use of the QUIC protocol must be disabled.	Windows	DISA STIG Google Chrome v2r9
DTBC-0074 - Use of the QUIC protocol must be disabled.	Windows	DISA STIG Google Chrome v2r4
DTBC-0074 - Use of the QUIC protocol must be disabled.	Windows	DISA STIG Google Chrome v2r8
DTBC-0074 - Use of the QUIC protocol must be disabled.	Windows	DISA STIG Google Chrome v2r6
EP11-00-008700 - The EDB Postgres Advanced Server must disable network functions, ports, protocols, and services deemed by the organization to be nonsecure, in accord with the Ports, Protocols, and Services Management (PPSM) guidance.	Windows	EDB PostgreSQL Advanced Server v11 Windows OS Audit v2r2
EP11-00-008700 - The EDB Postgres Advanced Server must disable network functions, ports, protocols, and services deemed by the organization to be nonsecure, in accord with the Ports, Protocols, and Services Management (PPSM) guidance.	Windows	EDB PostgreSQL Advanced Server v11 Windows OS Audit v2r1
EP11-00-008700 - The EDB Postgres Advanced Server must disable network functions, ports, protocols, and services deemed by the organization to be nonsecure, in accord with the Ports, Protocols, and Services Management (PPSM) guidance.	Windows	EDB PostgreSQL Advanced Server v11 Windows OS Audit v1r1
EP11-00-008700 - The EDB Postgres Advanced Server must disable network functions, ports, protocols, and services deemed by the organization to be nonsecure, in accord with the Ports, Protocols, and Services Management (PPSM) guidance.	Windows	EDB PostgreSQL Advanced Server v11 Windows OS Audit v2r3
EPAS-00-008700 - The EDB Postgres Advanced Server must disable network functions, ports, protocols, and services deemed by the organization to be nonsecure, in accord with the Ports, Protocols, and Services Management (PPSM) guidance.	Unix	EnterpriseDB PostgreSQL Advanced Server OS Linux v1r1
EX13-CA-000130 - Exchange services must be documented and unnecessary services must be removed or disabled.	Windows	DISA Microsoft Exchange 2013 Client Access Server STIG v2r1
EX13-CA-000130 - Exchange services must be documented and unnecessary services must be removed or disabled.	Windows	DISA Microsoft Exchange 2013 Client Access Server STIG v1r2
EX13-CA-000130 - Exchange services must be documented and unnecessary services must be removed or disabled.	Windows	DISA Microsoft Exchange 2013 Client Access Server STIG v1r3
EX13-EG-000305 - Exchange services must be documented and unnecessary services must be removed or disabled.	Windows	DISA Microsoft Exchange 2013 Edge Transport Server STIG v1r4
EX13-EG-000305 - Exchange services must be documented and unnecessary services must be removed or disabled.	Windows	DISA Microsoft Exchange 2013 Edge Transport Server STIG v1r5
EX13-MB-000300 - Exchange services must be documented and unnecessary services must be removed or disabled.	Windows	DISA Microsoft Exchange 2013 Mailbox Server STIG v2r2
EX13-MB-000300 - Exchange services must be documented and unnecessary services must be removed or disabled.	Windows	DISA Microsoft Exchange 2013 Mailbox Server STIG v2r1

Detections

Analytics

CCI|CCI-001762

Title

Reference Item Details

Audit Items