VCEM-67-000001 – ESX Agent Manager must limit the amount of time that each TCP connection is kept alive.
Details Denial of service is one threat against web servers. Many DoS attacks attempt to consume web server resources in...
- Home
- Security Hardening
- DISA STIG VMware vSphere 6.7 EAM Tomcat V1R1
DISA STIG VMware vSphere 6.7 EAM Tomcat V1R1
VCEM-67-000002 – ESX Agent Manager must limit the number of concurrent connections permitted.
Details Resource exhaustion can occur when an unlimited number of concurrent requests are allowed on a website, facilitating a denial-of-service...VCEM-67-000003 – ESX Agent Manager must limit the maximum size of a POST request.
Details The ‘maxPostSize’ value is the maximum size in bytes of the POST that will be handled by the container...VCEM-67-000004 – ESX Agent Manager must protect cookies from XSS.
Details Cookies are a common way to save session state over the HTTP(S) protocol. If attackers can compromise session data...VCEM-67-000005 – ESX Agent Manager must record user access in a format that enables monitoring of remote access.
Details Remote access can be exploited by an attacker to compromise the server. By recording all remote access activities, it...VCEM-67-000006 – ESX Agent Manager must generate log records for system startup and shutdown.
Details Logging must be started as soon as possible when a service starts and as late as possible when a...VCEM-67-000007 – ESX Agent Manager log files must only be modifiable by privileged users.
Details Log data is essential in the investigation of events. The accuracy of the information is always pertinent. One of...VCEM-67-000008 – ESX Agent Manager application files must be verified for their integrity.
Details Verifying that ESX Agent Manager application code is unchanged from its shipping state is essential for file validation and...VCEM-67-000016 – ESX Agent Manager must not have any symbolic links in the web content directory tree.
Details A web server is designed to deliver content and execute scripts or applications at the request of a client...VCEM-67-000017 – ESX Agent Manager directory tree must have permissions in an ‘out-of-the box’ state – out-of-the box state.
Details As a rule, accounts on a web server are to be kept to a minimum. Only administrators, web managers,...