Apache Server 2.4 Windows Server Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
The Apache web server must generate unique session identifiers with definable entropy.
<VulnDiscussion>Generating a session identifier (ID) that is not easily guessed through brute force is essential to deter several types of se...Rule Medium Severity -
The Apache web server must be built to fail to a known safe state if system initialization fails, shutdown fails, or aborts fail.
<VulnDiscussion>Determining a safe state for failure and weighing that against a potential DoS for users depends on what type of application ...Rule Medium Severity -
SRG-APP-000233-WSR-000146
<GroupDescription></GroupDescription>Group -
The Apache web server document directory must be in a separate partition from the Apache web servers system files.
<VulnDiscussion>A web server is used to deliver content on the request of a client. The content delivered to a client must be controlled, all...Rule Medium Severity -
SRG-APP-000246-WSR-000149
<GroupDescription></GroupDescription>Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules