STIGQter: STIG Summary: Apache Server 2.4 UNIX Server Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 22 Jan 2021: STIGQter: STIG Summary: Apache Server 2.4 UNIX Server Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 22 Jan 2021:SV-214246r612240_rule
V-214246
SRG-APP-000142-WSR-000089
AS24-U1-000360
CAT II
10
Determine the location of the "HTTPD_ROOT" directory and the "httpd.conf" file:
# httpd -V | egrep -i 'httpd_root|server_config_file'
-D HTTPD_ROOT="/etc/httpd"
-D SERVER_CONFIG_FILE="conf/httpd.conf"
Set the "Listen" directive to listen on a specific IP address and port.
Restart Apache: apachectl restart
Determine the location of the "HTTPD_ROOT" directory and the "httpd.conf" file:
# httpd -V | egrep -i 'httpd_root|server_config_file'
-D HTTPD_ROOT="/etc/httpd"
-D SERVER_CONFIG_FILE="conf/httpd.conf"
Search for the "Listen" directive:
# cat /<path_to_file>/httpd.conf | grep -i "Listen"
Verify that any enabled "Listen" directives specify both an IP address and port number.
If the "Listen" directive is found with only an IP address or only a port number specified, this is finding.
If the IP address is all zeros (i.e., 0.0.0.0:80 or [::ffff:0.0.0.0]:80), this is a finding.
If the "Listen" directive does not exist, this is a finding.
V-214246
False
AS24-U1-000360
Determine the location of the "HTTPD_ROOT" directory and the "httpd.conf" file:
# httpd -V | egrep -i 'httpd_root|server_config_file'
-D HTTPD_ROOT="/etc/httpd"
-D SERVER_CONFIG_FILE="conf/httpd.conf"
Search for the "Listen" directive:
# cat /<path_to_file>/httpd.conf | grep -i "Listen"
Verify that any enabled "Listen" directives specify both an IP address and port number.
If the "Listen" directive is found with only an IP address or only a port number specified, this is finding.
If the IP address is all zeros (i.e., 0.0.0.0:80 or [::ffff:0.0.0.0]:80), this is a finding.
If the "Listen" directive does not exist, this is a finding.
M
3996