Oracle HTTP Server 12.1.3 Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
SRG-APP-000516-WSR-000174
<GroupDescription></GroupDescription>Group -
OHS must have the AllowOverride directive set properly.
<VulnDiscussion>The property "AllowOverride" is used to allow directives to be set differently than those set for the overall architecture. ...Rule Medium Severity -
SRG-APP-000516-WSR-000174
<GroupDescription></GroupDescription>Group -
OHS must be set to evaluate deny directives first when considering whether to serve a file.
<VulnDiscussion>Part of securing OHS is allowing/denying access to the web server. Deciding on the manor the allow/deny rules are evaluated ...Rule Medium Severity -
SRG-APP-000516-WSR-000174
<GroupDescription></GroupDescription>Group -
OHS must deny all access by default when considering whether to serve a file.
<VulnDiscussion>Part of securing OHS is allowing/denying access to the web server. Deciding on the manor the allow/deny rules are evaluated ...Rule Medium Severity -
SRG-APP-000516-WSR-000174
<GroupDescription></GroupDescription>Group -
SRG-APP-000516-WSR-000174
<GroupDescription></GroupDescription>Group -
The OHS instance installation must not contain an .htaccess file.
<VulnDiscussion>.htaccess files are used to override settings in the OHS configuration files. The placement of the .htaccess file is also im...Rule Medium Severity -
SRG-APP-000516-WSR-000174
<GroupDescription></GroupDescription>Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules