VAMI must have resource mappings set to disable the serving of certain file types.

An XCCDF Rule

Details
Profiles

Description

Resource mapping is the process of tying a particular file type to a process in the web server that can serve that type of file to a requesting client and to identify which file types are not to be delivered to a client. By not specifying which files can and which files cannot be served to a user, VAMI could deliver sensitive files.

ID: SV-256658r918987_rule
Version: VCLD-70-000014
Severity: Medium
References: CCI-000381
Updated: about 2 months ago

Remediation Templates

Navigate to and open:

/opt/vmware/etc/lighttpd/lighttpd.conf

Add or reconfigure the following value:
url.access-deny = ( "~", ".inc" )

Restart the service with the following command:

# vmon-cli --restart applmgmt

VAMI must have resource mappings set to disable the serving of certain file types.

Description

Remediation Templates

A Manual Procedure