I - Mission Critical Sensitive
Rules and Groups employed by this XCCDF Profile
-
SRG-APP-000141-WSR-000075
Group -
An IIS Server configured to be a SMTP relay must require authentication.
Anonymous SMTP relays are strictly prohibited. An anonymous SMTP relay can be a vector for many types of malicious activity not limited to server exploitation for the sending of SPAM mail, access t...Rule Medium Severity -
SRG-APP-000266-WSR-000159
Group -
HTTPAPI Server version must be removed from the HTTP Response Header information.
HTTP Response Headers contain information that could enable an attacker to gain access to an information system. Failure to prevent the sending of certain HTTP Response Header information to remote...Rule Low Severity -
SRG-APP-000266-WSR-000159
Group -
ASP.NET version must be removed from the HTTP Response Header information.
HTTP Response Headers contain information that could enable an attacker to gain access to an information system. Failure to prevent the sending of certain HTTP Response Header information to remote...Rule Low Severity -
SRG-APP-000141-WSR-000015
Group -
The Request Smuggling filter must be enabled.
Security scans show Request Smuggling vulnerability on IIS server. The vulnerability allows a remote attacker to perform HTTP request smuggling attack. The vulnerability exists due to the way tha...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules