STIGQter: STIG Summary: Oracle HTTP Server 12.1.3 Security Technical Implementation Guide Version: 1 Release: 7 Benchmark Date: 24 Jul 2020: STIGQter: STIG Summary: Oracle HTTP Server 12.1.3 Security Technical Implementation Guide Version: 1 Release: 7 Benchmark Date: 24 Jul 2020:SV-79085r1_rule
V-64595
SRG-APP-000516-WSR-000174
OH12-1X-000178
CAT II
10
1. Open $DOMAIN_HOME/config/fmwconfig/components/OHS/<componentName>/httpd.conf and every .conf file (e.g., ssl.conf) included in it with an editor.
2. Search for the "Header" and "FileETag" directives at the OHS server, virtual host, or directory configuration scopes.
3a. Set the "Header" directive to "unset ETag", add the directive if it does not exist.
3b. Set the "FileETag" directive to "none", add the directive if it does not exist.
1. Open $DOMAIN_HOME/config/fmwconfig/components/OHS/<componentName>/httpd.conf and every .conf file (e.g., ssl.conf) included in it with an editor.
2. Search for the "Header" and "FileETag" directives at the OHS server, virtual host, or directory configuration scope.
3. If the "Header" and "FileETag" directives are omitted or set improperly, this is a finding.
V-64595
False
OH12-1X-000178
1. Open $DOMAIN_HOME/config/fmwconfig/components/OHS/<componentName>/httpd.conf and every .conf file (e.g., ssl.conf) included in it with an editor.
2. Search for the "Header" and "FileETag" directives at the OHS server, virtual host, or directory configuration scope.
3. If the "Header" and "FileETag" directives are omitted or set improperly, this is a finding.
M
2753