Ensure Access to OS Root Directory Is Denied By Default – allow
Details The Apache Directory directive allows for directory specific configuration of access controls and many other features and options. One...
- Home
- Security Hardening
- CIS Apache HTTP Server 2.4 L1 V2.0.0 Middleware
CIS Apache HTTP Server 2.4 L1 V2.0.0 Middleware
Ensure Access to OS Root Directory Is Denied By Default – deny
Details The Apache Directory directive allows for directory specific configuration of access controls and many other features and options. One...Ensure Access to Special Purpose Application Writable Directories is Properly Restricted
Details When the Apache webserver includes application software such as PHP, Java and many others, it is common for the...Ensure Apache Directories and Files Are Owned By Root
Details The Apache directories and files should be owned by root. This applies to all of the Apache software directories...Ensure Apache Is Installed From the Appropriate Binaries
Details The CIS Apache Benchmark recommends using the Apache binary provided by your vendor for most situations in order to...Ensure Appropriate Access to Web Content Is Allowed
Details In order to serve Web content, either the Apache Allow directive or the Require directive will need to be...Ensure Default HTML Content Is Removed – ‘httpd-manual is not installed’
Details Apache installations have default content that is not needed or appropriate for production use. The primary function for this...Ensure Default HTML Content Is Removed – ‘other handler does not exist’
Details Apache installations have default content that is not needed or appropriate for production use. The primary function for this...Ensure Default HTML Content Is Removed – ‘Server Information handler does not exist’
Details Apache installations have default content that is not needed or appropriate for production use. The primary function for this...Ensure Default HTML Content Is Removed – ‘Server Status handler does not exist’
Details Apache installations have default content that is not needed or appropriate for production use. The primary function for this...