STIGQter: STIG Summary: VMware vRealize Automation 7.x Lighttpd Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 28 Sep 2018:

Lighttpd must prohibit unnecessary services, functions or processes.

DISA Rule

SV-99907r1_rule

Vulnerability Number

V-89257

Group Title

SRG-APP-000141-WSR-000075

Rule Version

VRAU-LI-000160

Severity

CAT II

CCI(s)

• CCI-000381 - The organization configures the information system to provide only essential capabilities.

Weight

10

Fix Recommendation

Remove or disable any unnecessary services, functions or processes.

Check Contents

Obtain supporting documentation from the ISSO.

Determine if any unnecessary services, functions or processes are running on the web server.

If any unnecessary services, functions or processes are running on the web server, this is a finding.

Vulnerability Number

V-89257

Documentable

False

Rule Version

VRAU-LI-000160

Severity Override Guidance

Obtain supporting documentation from the ISSO.

Determine if any unnecessary services, functions or processes are running on the web server.

If any unnecessary services, functions or processes are running on the web server, this is a finding.

Check Content Reference

M

Target Key

3457

Comments