STIGQter: STIG Summary: Web Server Security Requirements Guide Version: 2 Release: 3 Benchmark Date: 26 Apr 2019:

The web server must record time stamps for log records to a minimum granularity of one second.

DISA Rule

SV-70231r2_rule

Vulnerability Number

V-55977

Group Title

SRG-APP-000375-WSR-000171

Rule Version

SRG-APP-000375-WSR-000171

Severity

CAT II

CCI(s)

• CCI-001889 - The information system records time stamps for audit records that meet organization-defined granularity of time measurement.

Weight

10

Fix Recommendation

Configure the web server to record log events with a time stamp to a granularity of one second.

Check Contents

Review the web server documentation and configuration to determine if log records are time stamped to a minimum granularity of one second.

Have a user generate a logable event and review the log data to determine if the web server is configured correctly.

If the log data does not contain a time stamp to a minimum granularity of one second, this is a finding.

Vulnerability Number

V-55977

Documentable

False

Rule Version

SRG-APP-000375-WSR-000171

Severity Override Guidance

Review the web server documentation and configuration to determine if log records are time stamped to a minimum granularity of one second.

Have a user generate a logable event and review the log data to determine if the web server is configured correctly.

If the log data does not contain a time stamp to a minimum granularity of one second, this is a finding.

Check Content Reference

M

Target Key

2557

Comments