STIGQter: STIG Summary: APACHE 2.2 Server for UNIX Security Technical Implementation Guide Version: 1 Release: 11 Benchmark Date: 25 Jan 2019:

A private web server must be located on a separate controlled access subnet.

DISA Rule

SV-32935r1_rule

Vulnerability Number

V-2243

Group Title

WA070

Rule Version

WA070 A22

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Isolate the private web server from the public DMZ and separate it from the internal general population LAN.

Check Contents

Verify the site’s network diagram and visually check the web server, to ensure that the private web server is located on a separate controlled access subnet and is not a part of the public DMZ that houses the public web servers. In addition, the private web server needs to be isolated via a controlled access mechanism from the local general population LAN.

Vulnerability Number

V-2243

Documentable

False

Rule Version

WA070 A22

Severity Override Guidance

Verify the site’s network diagram and visually check the web server, to ensure that the private web server is located on a separate controlled access subnet and is not a part of the public DMZ that houses the public web servers. In addition, the private web server needs to be isolated via a controlled access mechanism from the local general population LAN.

Check Content Reference

M

Responsibility

Information Assurance Officer

Target Key

158

Comments