Skip to content
ATO Pathways
  Log In

Guide to the Secure Configuration of Red Hat Enterprise Linux 8

Rules, Groups, and Values defined within the XCCDF Benchmark

  • Set httpd ServerSignature Directive to Off

    <code>ServerSignature Off</code> restricts <code>httpd</code> from displaying server version number on error pages. <br><br> Add or correct the fol...
    Rule Unknown Severity
    Show

  • Set httpd ServerTokens Directive to Prod

    <code>ServerTokens Prod</code> restricts information in page headers, returning only the word "Apache." <br><br> Add or correct the following direc...
    Rule Unknown Severity
    Show

  • Configure HTTPD-Served Web Content Securely

    Running <code>httpd</code> inside a <code>chroot</code> jail is designed to isolate the web server process to a small section of the filesystem, li...
    Group
    Show

  • Web Login Banner Verbiage

    Enter an appropriate login banner for your organization. Please note that new lines must be expressed by the '\n' character and special characters ...
    Value
    Show

  • Configure A Banner Page For Each Website

    Configure a login banner for each website when authentication is required for user access.
    Rule Low Severity
    Show

  • Each Web Content Directory Must Contain An index.html File

    Every <code>DocumentRoot</code> that is configured should have an <code>index.html</code> file that exists. Add an <code>index.html</code> file to ...
    Rule Low Severity
    Show

  • Disable Web Content Symbolic Links

    For each <code>&lt;Directory&gt;</code> instance, remove the following: <pre>FollowSymLinks</pre> If symbolic links are allowed, the following can ...
    Rule High Severity
    Show

  • Encrypt All File Uploads

    Use only secure encrypted logons and connections for uploading files to the web site.
    Rule High Severity
    Show

  • Disable Plaintext Authentication

    To prevent Dovecot from attempting plaintext authentication of clients, edit <code>/etc/dovecot/conf.d/10-auth.conf</code> and add\or correct the f...
    Rule Unknown Severity
    Show

  • Remove .java And .jpp Files

    .java and .jpp files should not exist and should be removed from the web server.
    Rule Low Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules