VAMI must have resource mappings set to disable the serving of certain file types.

An XCCDF Rule

Description

<VulnDiscussion>Resource mapping is the process of tying a particular file type to a process in the web server that can serve that type of file to a requesting client and to identify which file types are not to be delivered to a client. By not specifying which files can and which files cannot be served to a user, VAMI could deliver sensitive files.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-256658r918987_rule
Severity: Medium
References: CCI-000381
Updated: 8 months ago

Navigate to and open:

/opt/vmware/etc/lighttpd/lighttpd.conf

Add or reconfigure the following value:
url.access-deny = ( "~", ".inc" )

Restart the service with the following command:

# vmon-cli --restart applmgmt

VAMI must have resource mappings set to disable the serving of certain file types.

Description

Remediation - Manual Procedure