Skip to content

All Automation Controller NGINX web servers must protect system resources and privileged operations from hosted applications.

An XCCDF Rule

Description

<VulnDiscussion>Automation Controller NGINX web servers may host too many applications. Each application will need certain system resources and privileged operations to operate correctly. The Automation Controller NGINX web servers must be configured to contain and control the applications and protect the system resources and privileged operations from those not needed by the application for operation. Not limiting the application will exacerbate the potential harm a compromised application could cause to a system.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID
SV-256951r960963_rule
Severity
Low
References
Updated



Remediation - Manual Procedure

As a system administrator for each Automation Controller NGINX web server host, place the server in SELinux enforcing mode:

setenforce 1