Home
Security Hardening
DISA STIG VMware vSphere 6.7 Virgo Client V1R1

DISA STIG VMware vSphere 6.7 Virgo Client V1R1

VCFL-67-000019 – vSphere Client directory tree must have permissions in an ‘out-of-the-box’ state – out-of-the-box state.
Details As a rule, accounts on a web server are to be kept to a minimum. Only administrators, web managers,...
VCFL-67-000020 – vSphere Client must limit the number of allowed connections.
Details Limiting the number of established connections to Sphere Client is a basic denial-of-service protection. Servers where the limit is...
VCFL-67-000021 – vSphere Client must set ‘URIEncoding’ to UTF-8 – URIEncoding to UTF-8.
Details Invalid user input occurs when a user inserts data or characters into a hosted application’s data entry field and...
VCFL-67-000022 – vSphere Client must set the ‘welcome-file’ node to a default web page – welcome-file node to a default web page.
Details Enumeration techniques, such as URL parameter manipulation, rely on being able to obtain information about the web server’s directory...
VCFL-67-000023 – vSphere Client must not show directory listings.
Details Enumeration techniques, such as URL parameter manipulation, rely on being able to obtain information about the web server’s directory...
VCFL-67-000024 – vSphere Client must be configured to show error pages with minimal information.
Details Web servers will often display error messages to client users, displaying enough information to aid in the debugging of...
VCFL-67-000025 – vSphere Client must not enable support for TRACE requests.
Details ‘Trace’ is a technique for a user to request internal information about Tomcat. This is useful during product development...
VCFL-67-000009 – vSphere Client must record user access in a format that enables monitoring of remote access.
Details Remote access can be exploited by an attacker to compromise the server. By recording all remote access activities, it...
VCFL-67-000026 – vSphere Client must have the debug option turned off.
Details Information needed by an attacker to begin looking for possible vulnerabilities in a web server includes any information about...
VCFL-67-000010 – vSphere Client must generate log records during Java startup and shutdown.
Details Logging must be started as soon as possible when a service starts and when a service is stopped. Many...

Prev Next

DISA STIG VMware vSphere 6.7 Virgo Client V1R1

VCFL-67-000019 – vSphere Client directory tree must have permissions in an ‘out-of-the-box’ state – out-of-the-box state.

VCFL-67-000020 – vSphere Client must limit the number of allowed connections.

VCFL-67-000021 – vSphere Client must set ‘URIEncoding’ to UTF-8 – URIEncoding to UTF-8.

VCFL-67-000022 – vSphere Client must set the ‘welcome-file’ node to a default web page – welcome-file node to a default web page.

VCFL-67-000023 – vSphere Client must not show directory listings.

VCFL-67-000024 – vSphere Client must be configured to show error pages with minimal information.

VCFL-67-000025 – vSphere Client must not enable support for TRACE requests.

VCFL-67-000009 – vSphere Client must record user access in a format that enables monitoring of remote access.

VCFL-67-000026 – vSphere Client must have the debug option turned off.

VCFL-67-000010 – vSphere Client must generate log records during Java startup and shutdown.