Apache Server 2.4 Windows Server Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
SRG-APP-000001-WSR-000001
Group -
The Apache web server must limit the number of allowed simultaneous session requests.
Apache web server management includes the ability to control the number of users and user sessions that utilize an Apache web server. Limiting the number of allowed users and sessions per user is h...Rule Medium Severity -
SRG-APP-000001-WSR-000002
Group -
SRG-APP-000014-WSR-000006
Group -
The Apache web server must use encryption strength in accordance with the categorization of data hosted by the Apache web server when remote connections are provided.
The Apache web server has several remote communications channels. Examples are user requests via http/https, communication to a backend database, and communication to authenticate users. The encryp...Rule Medium Severity -
SRG-APP-000516-WSR-000174
Group -
System logging must be enabled.
The server error logs are invaluable because they can also be used to identify potential problems and enable proactive remediation. Log data can reveal anomalous behavior such as "not found" or "un...Rule Medium Severity -
SRG-APP-000089-WSR-000047
Group -
The Apache web server must generate, at a minimum, log records for system startup and shutdown, system access, and system authentication events.
Log records can be generated from various components within the Apache web server (e.g., httpd, plug-ins to external backends, etc.). From a web server perspective, certain specific Apache web serv...Rule Medium Severity -
SRG-APP-000095-WSR-000056
Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.