Skip to content

II - Mission Support Sensitive

Rules and Groups employed by this XCCDF Profile

  • The Apache web server must generate a session ID using as much of the character set as possible to reduce the risk of brute force.

    <VulnDiscussion>Generating a session identifier (ID) that is not easily guessed through brute force is essential to deter several types of se...
    Rule Medium Severity
  • SRG-APP-000225-WSR-000074

    <GroupDescription></GroupDescription>
    Group
  • The Apache web server must augment re-creation to a stable and known baseline.

    &lt;VulnDiscussion&gt;Making certain that the web server has not been updated by an unauthorized user is always a concern. Adding patches, function...
    Rule Medium Severity
  • SRG-APP-000225-WSR-000141

    <GroupDescription></GroupDescription>
    Group
  • The Apache web server must be configured to provide clustering.

    &lt;VulnDiscussion&gt;The web server may host applications that display information that cannot be disrupted, such as information that is time crit...
    Rule Medium Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules