STIGQter: STIG Summary: Web Server Security Requirements Guide Version: 2 Release: 3 Benchmark Date: 26 Apr 2019:

The web server must generate information to be used by external applications or entities to monitor and control remote access.

DISA Rule

SV-53035r3_rule

Vulnerability Number

V-40799

Group Title

SRG-APP-000016-WSR-000005

Rule Version

SRG-APP-000016-WSR-000005

Severity

CAT II

CCI(s)

• CCI-000067 - The information system monitors remote access methods.

Weight

10

Fix Recommendation

Configure the web server to provide remote connection information to external monitoring and access control applications.

Check Contents

Review the web server documentation and configuration to determine if the web server is configured to generate information for external applications monitoring remote access.

If a mechanism is not in place providing information to an external application used to monitor and control access, this is a finding.

Vulnerability Number

V-40799

Documentable

False

Rule Version

SRG-APP-000016-WSR-000005

Severity Override Guidance

Review the web server documentation and configuration to determine if the web server is configured to generate information for external applications monitoring remote access.

If a mechanism is not in place providing information to an external application used to monitor and control access, this is a finding.

Check Content Reference

M

Target Key

2557

Comments