Home
Security Hardening
DISA STIG Apache Site 2.2 Unix V1R11 Middleware

DISA STIG Apache Site 2.2 Unix V1R11 Middleware

WG235 A22 – Web Administrators must only use encrypted connections for Document Root directory uploads.
Details Logging in to a web server via an unencrypted protocol or service, to upload documents to the web site,...
WG255 A22 – Access to the web server log files must be restricted to administrators, web administrators, and auditors.
Details A major tool in exploring the web site use, attempted use, unusual conditions, and problems are the access and...
WG237 A22 – Remote authors or content providers must have all files scanned for viruses and malicious code before uploading files to the Document Root directory.
Details Remote web authors should not be able to upload files to the Document Root directory structure without virus checking...
WG240 A22 – Logs of web server access and errors must be established and maintained
Details A major tool in exploring the web site use, attempted use, unusual conditions, and problems are reported in the...
WG242 A22 – Log file data must contain required data elements.
Details The use of log files is a critical component of the operation of the Information Systems (IS) used within...
WG250 A22 – Log file access must be restricted to System Administrators, Web Administrators or Auditors.
Details A major tool in exploring the web site use, attempted use, unusual conditions, and problems are the access and...
WG260 A22 – Only web sites that have been fully reviewed and tested must exist on a production web server.
Details In the case of a production web server, areas for content development and testing will not exist, as this...
WG265 A22 – The required DoD banner page must be displayed to authenticated users accessing a DoD private website.
Details A consent banner will be in place to make prospective entrants aware that the website they are about to...
WG290 A22 – Web client access to the content directories must be restricted to read and execute – alias
Details Excessive permissions for the anonymous web user account are one of the most common faults contributing to the compromise...
WG290 A22 – Web client access to the content directories must be restricted to read and execute – script alias
Details Excessive permissions for the anonymous web user account are one of the most common faults contributing to the compromise...

Prev Next

DISA STIG Apache Site 2.2 Unix V1R11 Middleware

WG235 A22 – Web Administrators must only use encrypted connections for Document Root directory uploads.

WG255 A22 – Access to the web server log files must be restricted to administrators, web administrators, and auditors.

WG237 A22 – Remote authors or content providers must have all files scanned for viruses and malicious code before uploading files to the Document Root directory.

WG240 A22 – Logs of web server access and errors must be established and maintained

WG242 A22 – Log file data must contain required data elements.

WG250 A22 – Log file access must be restricted to System Administrators, Web Administrators or Auditors.

WG260 A22 – Only web sites that have been fully reviewed and tested must exist on a production web server.

WG265 A22 – The required DoD banner page must be displayed to authenticated users accessing a DoD private website.

WG290 A22 – Web client access to the content directories must be restricted to read and execute – alias

WG290 A22 – Web client access to the content directories must be restricted to read and execute – script alias