Home
Security Hardening
DISA STIG IIS 6.0 Server V6R16

DISA STIG IIS 6.0 Server V6R16

WA000-WI6092 IIS6 – The PercentUAllowed registry entry must be set properly.
Details Http.sys is the kernel mode driver that handles HTTP requests. There are several registry keys associated with http.sys. The...
WA000-WI6094 IIS6 – The UriMaxUriBytes registry entry must be set properly.
Details Http.sys is the kernel mode driver that handles HTTP requests. There are several registry keys associated with http.sys. The...
WA000-WI6096 IIS6 – The UrlSegmentMaxCount registry entry must be set properly.
Details Http.sys is the kernel mode driver that handles HTTP requests. There are several registry keys associated with http.sys. The...
WA060 IIS6 – A public web server, if hosted on the NIPRNet, must be isolated in an accredited DoD DMZ Extension.
Details To minimize exposure of private assets to unnecessary risk by attackers, public web servers must be isolated from internal...
WA070 IIS6 – A private web server must be located on a separate controlled access subnet.
Details Private web servers, which host sites serving controlled access data, must be protected from outside threats in addition to...
WA120 IIS6 – Administrative users and groups with access privilege to the web server must be documented.
Details There are typically several individuals and groups involved in running a production web site. In most cases, several types...
WA140 IIS6 – Web server content and configuration files must be part of a routine backup program.
Details Backing up web server data and web server application software after upgrades or maintenance ensures that recovery can be...
WA155 IIS6 – Classified web servers must be afforded physical security commensurate with the classification of its content.
Details When data of a classified nature is migrated to a web server, fundamental principles applicable to the safeguarding of...
WA230 IIS6 – The site software used with the web server must have all applicable security patches applied and documented.
Details The IAVM process does not address all patches that have been identified for the host operating system or, in...
WG040 IIS6 – Public web server resources must not be shared with private assets.
Details It is important to segregate public web server resources from private resources located behind the DoD DMZ in order...

Prev Next

DISA STIG IIS 6.0 Server V6R16

WA000-WI6092 IIS6 – The PercentUAllowed registry entry must be set properly.

WA000-WI6094 IIS6 – The UriMaxUriBytes registry entry must be set properly.

WA000-WI6096 IIS6 – The UrlSegmentMaxCount registry entry must be set properly.

WA060 IIS6 – A public web server, if hosted on the NIPRNet, must be isolated in an accredited DoD DMZ Extension.

WA070 IIS6 – A private web server must be located on a separate controlled access subnet.

WA120 IIS6 – Administrative users and groups with access privilege to the web server must be documented.

WA140 IIS6 – Web server content and configuration files must be part of a routine backup program.

WA155 IIS6 – Classified web servers must be afforded physical security commensurate with the classification of its content.

WA230 IIS6 – The site software used with the web server must have all applicable security patches applied and documented.

WG040 IIS6 – Public web server resources must not be shared with private assets.