Home
Security Hardening
DISA STIG VMware vSphere 6.7 Virgo Client V1R1

DISA STIG VMware vSphere 6.7 Virgo Client V1R1

VCFL-67-000027 – Rsyslog must be configured to monitor and ship vSphere Client log files – access
Details The vSphere Client produces a handful of logs that must be offloaded from the originating system. This information can...
VCFL-67-000012 – vSphere Client application files must be verified for their integrity.
Details Verifying that vSphere Client application code is unchanged from its shipping state is essential for file validation and non-repudiation...
VCFL-67-000027 – Rsyslog must be configured to monitor and ship vSphere Client log files – runtime
Details The vSphere Client produces a handful of logs that must be offloaded from the originating system. This information can...
VCFL-67-000013 – vSphere Client must have Multipurpose Internet Mail Extensions (MIME) that invoke OS shell programs disabled.
Details MIME mappings tell vSphere Client what type of program various file types and extensions are and what external utilities...
VCFL-67-000028 – vSphere Client must be configured with the appropriate ports.
Details Web servers provide numerous processes, features, and functionalities that use TCP/IP ports. Some of these processes may be deemed...
VCFL-67-000014 – vSphere Client must have mappings set for Java servlet pages.
Details Resource mapping is the process of tying a particular file type to a process in the web server that...
VCFL-67-000015 – vSphere Client must not have the Web Distributed Authoring (WebDAV) servlet installed.
Details WebDAV is an extension to the HTTP protocol that, when developed, was meant to allow users to create, change,...
VCFL-67-000016 – vSphere Client must be configured with memory leak protection.
Details The Java Runtime environment can cause a memory leak or lock files under certain conditions. Without memory leak protection,...
VCFL-67-000029 – vSphere Client must disable the shutdown port.
Details An attacker has at least two reasons to stop a web server. The first is to cause a denial...
VCFL-67-000030 – vSphere Client must set the secure flag for cookies.
Details The secure flag is an option that can be set by the application server when sending a new cookie...

DISA STIG VMware vSphere 6.7 Virgo Client V1R1

VCFL-67-000027 – Rsyslog must be configured to monitor and ship vSphere Client log files – access

VCFL-67-000012 – vSphere Client application files must be verified for their integrity.

VCFL-67-000027 – Rsyslog must be configured to monitor and ship vSphere Client log files – runtime

VCFL-67-000013 – vSphere Client must have Multipurpose Internet Mail Extensions (MIME) that invoke OS shell programs disabled.

VCFL-67-000028 – vSphere Client must be configured with the appropriate ports.

VCFL-67-000014 – vSphere Client must have mappings set for Java servlet pages.

VCFL-67-000015 – vSphere Client must not have the Web Distributed Authoring (WebDAV) servlet installed.

VCFL-67-000016 – vSphere Client must be configured with memory leak protection.

VCFL-67-000029 – vSphere Client must disable the shutdown port.

VCFL-67-000030 – vSphere Client must set the secure flag for cookies.