Guide to the Secure Configuration of Red Hat Enterprise Linux 7
Rules, Groups, and Values defined within the XCCDF Benchmark
-
Disable Anonymous FTP Access
If any directories that contain dynamic scripts can be accessed via FTP by any group or user that does not require access, remove permissions to su...Rule Medium Severity -
Ignore HTTPD .htaccess Files
SetAllowOverridetononefor each instant of<Directory>.Rule Medium Severity -
Limit Available Methods
Web server methods are defined in section 9 of RFC 2616 ( <a href="http://www.ietf.org/rfc/rfc2616.txt">http://www.ietf.org/rfc/rfc2616.txt</a>...Rule Unknown Severity -
Restrict Root Directory
The <code>httpd</code> root directory should always have the most restrictive configuration enabled. <pre><Directory / > Options None A...Rule Unknown Severity -
Enable Postfix Service
The Postfix mail transfer agent is used for local mail delivery within the system. The default configuration only listens for connections to the de...Rule Unknown Severity -
Restrict Web Directory
The default configuration for the web (<code>/var/www/html</code>) Directory allows directory indexing (<code>Indexes</code>) and the following of ...Rule Unknown Severity -
Minimize Web Server Loadable Modules
A default installation of <code>httpd</code> includes a plethora of dynamically shared objects (DSO) that are loaded at run-time. Unlike the aforem...Group -
httpd Core Modules
These modules comprise a basic subset of modules that are likely needed for base <code>httpd</code> functionality; ensure they are not commented ou...Group -
Disable Cache Support
The <code>cache</code> module allows <code>httpd</code> to cache data, optimizing access to frequently accessed content. However, it introduces pot...Rule Unknown Severity -
Disable CGI Support
The <code>cgi</code> module allows HTML to interact with the CGI web programming language. <br><br> If this functionality is unnecessary, comment o...Rule Unknown Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules