Home
Security Hardening
CIS Apache HTTP Server 2.2 L2 V3 6.0

CIS Apache HTTP Server 2.2 L2 V3 6.0

Ensure the Proxy Modules Are Disabled
Details The Apache proxy modules allow the server to act as a proxy (either forward or reverse proxy) for HTTP...
Ensure the ScoreBoard File Is Secured
Details The ‘ScoreBoardFile’ directive sets a file path which the server will use for interprocess communication (IPC) among the Apache...
Ensure the Server Is Not a Multi-Use System
Details A web server should function as only a web server, and it possible should not be mixed with other...
Ensure the Status Module Is Disabled
Details The Apache ‘mod_status’ module provides current server performance statistics. Rationale: While having server performance status information available as a...
Ensure the User Directories Module Is Disabled
Details The ‘UserDir’ directive must be disabled so that user home directories are not accessed via the web site with...
Ensure the WebDAV Modules Are Disabled
Details The Apache ‘mod_dav’ and ‘mod_dav_fs’ modules support WebDAV (‘Web-based Distributed Authoring and Versioning’) functionality for Apache. WebDAV is an...
Secure the Pid File – ‘PidFile directory’
Details The PidFile directive sets the file path to the process ID file to which the server records the process...