STIGQter STIGQter: STIG Summary: APACHE 2.2 Server for UNIX Security Technical Implementation Guide Version: 1 Release: 11 Benchmark Date: 25 Jan 2019:

Web Distributed Authoring and Versioning (WebDAV) must be disabled.

DISA Rule

SV-33216r1_rule

Vulnerability Number

V-26287

Group Title

WA00505

Rule Version

WA00505 A22

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Edit the httpd.conf file and remove the following modules:

dav_module
dav_fs_module
dav_lock_module

Check Contents

Enter the following command:

/usr/local/Apache2.2/bin/httpd –M.

This will provide a list of all loaded modules. If any of the following modules are found, this is a finding.

dav_module
dav_fs_module
dav_lock_module

Vulnerability Number

V-26287

Documentable

False

Rule Version

WA00505 A22

Severity Override Guidance

Enter the following command:

/usr/local/Apache2.2/bin/httpd –M.

This will provide a list of all loaded modules. If any of the following modules are found, this is a finding.

dav_module
dav_fs_module
dav_lock_module

Check Content Reference

M

Responsibility

Web Administrator

Target Key

158

Comments