Revision 1.1May 6, 2021
Functional Update
- 3.7 Ensure the Core Dump Directory Is Secured
- 4.1 Ensure Access to OS Root Directory Is Denied By Default - allow
- 4.1 Ensure Access to OS Root Directory Is Denied By Default - deny
- 4.3 Ensure OverRide Is Disabled for the OS Root Directory - AllowOverride None
- 4.3 Ensure OverRide Is Disabled for the OS Root Directory - exclude AllowOverrideList
- 4.4 Ensure OverRide Is Disabled for All Directories - AllowOverride
- 5.1 Ensure Options for the OS Root Directory Are Restricted
- 5.10 Ensure Access to .ht* Files Is Restricted
- 5.2 Ensure Options for the Web Root Directory Are Restricted
- 5.3 Ensure Options for Other Directories Are Minimized
- 5.7 Ensure HTTP Request Methods Are Restricted - allow
- 5.7 Ensure HTTP Request Methods Are Restricted - deny
- 5.9 Ensure Old HTTP Protocol Versions Are Disallowed - VirtualHost RewriteEngine
- 5.9 Ensure Old HTTP Protocol Versions Are Disallowed - VirtualHost RewriteOptions
- 6.1 Ensure the Error Log Filename and Severity Level Are Configured Correctly - VirtualHost
- 7.2 Ensure a Valid Trusted Certificate Is Installed
- 7.3 Ensure the Server's Private Key Is Protected
- 7.5 Ensure Weak SSL/TLS Ciphers Are Disabled - 'Global SSLCipherSuite'
- 7.5 Ensure Weak SSL/TLS Ciphers Are Disabled - 'Global SSLHonorCipherOrder = On'
- 7.5 Ensure Weak SSL/TLS Ciphers Are Disabled - 'VirtualHost SSLCipherSuite'
- 7.5 Ensure Weak SSL/TLS Ciphers Are Disabled - 'VirtualHost SSLHonorCipherOrder = On'
- 7.8 Ensure Medium Strength SSL/TLS Ciphers Are Disabled
- 7.9 Ensure All Web Content is Accessed via HTTPS
